{"id":"ROOT-APP-GOBINARY-CVE-2026-41602","summary":"CVE-2026-41602 in rootio-github.com/apache/thrift - Patched by Root","details":"Root has patched CVE-2026-41602 in the rootio-github.com/apache/thrift package for Root:Go. Multiple fixed versions available.","modified":"2026-05-20T13:03:29.425141823Z","published":"2026-05-20T11:26:48Z","upstream":["CVE-2026-41602"],"database_specific":{"severity":"HIGH","source":"Root","distro_version":"","distro":"gobinary"},"affected":[{"package":{"name":"rootio-github.com/apache/thrift","ecosystem":"Root:Go"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"v0.21.0-root.io.1"},{"fixed":"v0.22.0-root.io.1"}]}],"database_specific":{"upstream_version":"v0.22.0-root.io.1","all_fixed_versions":["v0.21.0-root.io.1","v0.22.0-root.io.1"],"source":"https://api.root.io/external/osv/ROOT-APP-GOBINARY-CVE-2026-41602.json","total_fixed_versions":2,"root_patched":true,"root_patch_version":""}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}