search

darkrockmountain / gomail

GoMail is a powerful library for sending emails via multiple providers, including SMTP, Gmail API, Microsoft Graph API, SendGrid, AWS SES, Mailgun, Mandrill, Postmark, and SparkPost. Supporting attachments, plain text, and HTML content, it simplifies email integration for developers with easy setup and robust functionalities.
https://darkrockmountain.com
Apache License 2.0
4 stars 1 forks source link

[BUG] - GO-2024-2887 Vulnerability in net/netip Package #15

Closed DarkRockMountain-admin closed 2 months ago

DarkRockMountain-admin commented 4 months ago

Describe the bug A vulnerability (GO-2024-2887) was detected in the net/netip package of Go version 1.22.3. This causes unexpected behavior when using Is methods for IPv4-mapped IPv6 addresses.

To Reproduce Steps to reproduce the behavior:

  1. Use the net/netip package with Go version 1.22.3.
  2. Call the IsLoopback or IsMulticast methods on an IPv4-mapped IPv6 address.
  3. Observe the unexpected behavior.

Expected behavior The methods should handle IPv4-mapped IPv6 addresses correctly without causing unexpected behavior.

Screenshots N/A

Desktop (please complete the following information):

Smartphone (please complete the following information): N/A

Additional context This issue is resolved in Go version 1.22.4. Updating to this version will fix the vulnerability.

github-actions[bot] commented 3 months ago

This issue is stale because it has been open for 30 days with no activity.