{"id":"CGA-mrrf-pm2m-cf22","modified":"2026-07-17T19:12:18.636746928Z","published":"2026-04-10T21:16:12Z","upstream":["CVE-2026-32289","GHSA-7mr4-xjxg-34g6","GO-2026-4865"],"references":[{"type":"WEB","url":"https://go.dev/cl/763762"},{"type":"WEB","url":"https://go.dev/issue/78331"},{"type":"WEB","url":"https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"},{"type":"WEB","url":"https://pkg.go.dev"},{"type":"WEB","url":"https://pkg.go.dev/vuln/GO-2026-4865"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/32xxx/CVE-2026-32289.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-32289"}],"affected":[{"package":{"name":"go-slim-1.24","ecosystem":"Chainguard","purl":"pkg:apk/chainguard/go-slim-1.24?arch=x86_64"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"ecosystem_specific":{"components":[{"component_version":"go1.24.13","component_type":"go-module","component_location":"/usr/lib/go/pkg/tool/linux_amd64/test2json","component_purl":"pkg:golang/stdlib@go1.24.13","latest_event_status":"fix_not_planned","latest_event_timestamp":"2026-04-12T12:40:18Z","architecture":"x86_64","component_name":"stdlib"}]},"database_specific":{"source":"https://advisories.cgr.dev/chainguard/v3/osv/CGA-mrrf-pm2m-cf22.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}]}