github.com/lestrrat-go/jwx/v2 Security Advisories - Go

github.com/lestrrat-go/jwx/v2

go · Package jwx contains tools that deal with the various JWx (JOSE) technologies such as JWT, JWS, JWE, etc in Go. Examples are stored in a separate Go module (to avoid adding dependencies to this module), and thus does not appear in the online documentation for this module. You can find the examples in Github at https://github.com/lestrrat-go/jwx/tree/v2/examples You can find more high level documentation at Github (https://github.com/lestrrat-go/jwx/tree/v2) FAQ style documentation can be found in the repository (https://github.com/lestrrat-go/jwx/tree/develop/v2/docs) · Repository · Package

Security Advisories for github.com/lestrrat-go/jwx/v2 in go

Moderate

over 1 year ago

JWX vulnerable to a denial of service attack using compressed JWE message GSA_kwCzR0hTQS1oajN2LW02ODQtdjI1Oc4AA52y

go github.com/lestrrat-go/jwx, github.com/lestrrat-go/jwx/v2

Moderate

over 1 year ago

Parsing JSON serialized payload without protected field can lead to segfault GSA_kwCzR0hTQS1wdmNyLXY4ajgtajVxM84AA4So

go github.com/lestrrat-go/jwx, github.com/lestrrat-go/jwx/v2

Moderate

almost 2 years ago

lestrrat-go/jwx's malicious parameters in JWE can cause a DOS GSA_kwCzR0hTQS03Zjl4LWd3ODUtOGdyZs4AA3lA

go github.com/lestrrat-go/jwx/v2, github.com/lestrrat-go/jwx

Moderate

over 2 years ago

github.com/lestrrat-go/jwx vulnerable to Potential Padding Oracle Attack GSA_kwCzR0hTQS1ybTh2LW14ajMtNXJtcc4AAz3K

go github.com/lestrrat-go/jwx, github.com/lestrrat-go/jwx/v2

Filter by Severity

Moderate 4

ecosyste.ms

Data

Tools

Indexes

Applications

Experiments

Advisories