CNNVD-202601-4672 Information

CNNVD ID

CNNVD-202601-4672

Related CVE

CVE-2025-61726

• CNNVD Published: 2026-01-28

Description (Chinese)

Google Go是美国谷歌（Google）公司的一种静态强类型、编译型、并发型，并具有垃圾回收功能的编程语言。 Google Go存在安全漏洞，该漏洞源于未限制查询参数数量，可能导致解析大量参数时消耗过多内存。

Description (English)

Google Go is a static type, compiler, hairdresser of Google and a programme language with a garbage recovery function. Google Go had a security loophole, which stemmed from an unlimited number of query parameters, which could lead to excessive RAM consumption when deciphering a large number of parameters.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

谷歌

Published

2026-01-28

Last Modified

2026-02-24

References

https://go.dev/cl/736712 https://go.dev/issue/77101 https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc https://pkg.go.dev/vuln/GO-2026-4341

Patch

https://go.dev/dl/