github.com/theupdateframework/go-tuf/v2 Security Advisories - Go | Ecosyste.ms: Advisories

github.com/theupdateframework/go-tuf/v2

View on github.com · View on proxy.golang.org

Security Advisories for github.com/theupdateframework/go-tuf/v2 in go

Moderate

5 months ago

go-tuf Path Traversal in TAP 4 Multirepo Client Allows Arbitrary File Write via Malicious Repository Names GSA_kwCzR0hTQS1qcWM1LXcyeHgtNXZxNM4ABRll

go github.com/theupdateframework/go-tuf/v2

Moderate

5 months ago

go-tuf improperly validates the configured threshold for delegations GSA_kwCzR0hTQS1mcGh2LXc5ZnEtMjUyNc4ABRWK

go github.com/theupdateframework/go-tuf/v2

Moderate

5 months ago

go-tuf affected by client DoS via malformed server response GSA_kwCzR0hTQS04NDZwLWpnMnctdzMyNM4ABRWJ

go github.com/theupdateframework/go-tuf/v2

High

over 1 year ago

Incorrect delegation lookups can make go-tuf download the wrong artifact GSA_kwCzR0hTQS00ZjhyLXFxcjktZnE4as4AA_5h

go github.com/theupdateframework/go-tuf/v2

Filter by Severity

Moderate 3 High 1