Go before 1.16.10 and 1.17.x before 1.17.3 allows an archive/zip Reader.Open panic via a crafted ZIP archive containing an invalid name or an empty filename field.
Improper Input Validation
3.9
-
-
3.9
-
-
-
-
-
-
-
-
BIT-2021-41772
-
BIT-golang-2021-41772
-
3.9
-
3.9
-