VYPR

Go modules package

github.com/golang-fips/openssl

pkg:golang/github.com/golang-fips/openssl

Vulnerabilities (1)

  • CVE-2024-9355MedOct 1, 2024
    affected <= 2.0.3

    A vulnerability was found in Golang FIPS OpenSSL. This flaw allows a malicious user to randomly cause an uninitialized buffer length variable with a zeroed buffer to be returned in FIPS mode. It may also be possible to force a false positive match between non-equal hashes when co