CGA-4h77-j4cg-gp2h

Source
https://images.chainguard.dev/security/CGA-4h77-j4cg-gp2h
Import Source
https://advisories.cgr.dev/chainguard/v3/osv/CGA-4h77-j4cg-gp2h.json
JSON Data
https://api.test.osv.dev/v1/vulns/CGA-4h77-j4cg-gp2h
Upstream
  • GHSA-crqm-pwhx-j97f
Published
2025-11-07T09:42:08Z
Modified
2026-07-17T18:36:21.097508362Z
Summary
[none]
Details
References

Affected packages

Chainguard / go-1.20

Package

Name
go-1.20
Purl
pkg:apk/chainguard/go-1.20?arch=aarch64

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Ecosystem specific

{
    "components": [
        {
            "architecture": "aarch64",
            "latest_event_timestamp": "2026-01-16T09:06:33Z",
            "component_version": "go1.20.14",
            "component_name": "stdlib",
            "component_type": "go-module",
            "component_location": "/usr/lib/go/pkg/tool/linux_arm64/asm",
            "component_purl": "pkg:golang/stdlib@go1.20.14",
            "latest_event_status": "fix_not_planned"
        }
    ]
}

Database specific

source
"https://advisories.cgr.dev/chainguard/v3/osv/CGA-4h77-j4cg-gp2h.json"

Wolfi / go-1.20

Package

Name
go-1.20
Purl
pkg:apk/wolfi/go-1.20?arch=aarch64

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected

Ecosystem specific

{
    "components": [
        {
            "component_type": "go-module",
            "component_version": "go1.20.14",
            "latest_event_timestamp": "2026-01-16T09:06:33Z",
            "component_name": "stdlib",
            "architecture": "aarch64",
            "component_location": "/usr/lib/go/pkg/tool/linux_arm64/asm",
            "component_purl": "pkg:golang/stdlib@go1.20.14",
            "latest_event_status": "fix_not_planned"
        }
    ]
}

Database specific

source
"https://advisories.cgr.dev/chainguard/v3/osv/CGA-4h77-j4cg-gp2h.json"