Note:
This project will be discontinued after December 13, 2021. [more]
2018-09-16
The html package (aka x/net/html) before 2018-07-13 in Go mishandles "in frameset" insertion mode, leading to a "panic: runtime error" for html.Parse of <template><object>, <template><applet>, or <template><marquee>. This is related to HTMLTreeBuilder.cpp in WebKit.
| Products | Fedora, Net |
| Type | NULL Pointer Dereference (CWE-476) |
| First patch |
https://github.com/golang/net/commit/aaf60122140d3fcf75376d319f0554393160eb50 |
| Relevant file/s |
• ./html/parse.go (modified, +1, -12)
• ./html/testdata/webkit/template.dat (modified, +1, -7) |
| Links |
• https://bugs.chromium.org/p/chromium/issues/detail?id=829668
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LREEWY6KNLHRWFZ7OT4HVLMVVCGGUHON/ • https://github.com/golang/go/issues/27016 • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UKRCI7WIOCOCD3H7NXWRGIRABTQOZOBK/ |
Navigation
Patch data:
Patched area:
(on by default)
Patched area: