VYPR

compress/gzip

by GO

CVEs (1)

  • CVE-2022-30631Aug 9, 2022
    risk 0.00cvss epss 0.02

    Uncontrolled recursion in Reader.Read in compress/gzip before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via an archive containing a large number of concatenated 0-length compressed files.