Medium severity6.2GHSA Advisory· Published Mar 16, 2025· Updated Apr 15, 2026
CVE-2025-30077
CVE-2025-30077
Description
Open Networking Foundation SD-RAN ONOS onos-lib-go 0.10.28 allows an index out-of-range panic in asn1/aper GetBitString via a zero value of numBits.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/onosproject/onos-lib-goGo | <= 0.10.28 | — |
Affected products
3- Range: <= 0.10.28
- ghsa-coords2 versionspkg:golang/github.com/onosproject/onos-lib-gopkg:rpm/opensuse/govulncheck-vulndb&distro=openSUSE%20Tumbleweed
<= 0.10.28+ 1 more
- (no CPE)range: <= 0.10.28
- (no CPE)range: < 0.0.20250327T184518-1.1
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.