pkg:Go/github.com/osrg/gobgp/v4

8 total CVEsHIGH7MEDIUM1

✅ Check your installed version

All known vulnerabilities

  • HIGH7.5CVE-2026-42285GoBGP has a panic in AdjRib.Update via malformed BGP Update message (Nil Pointer Dereference)
    >= 4.4.0, < 4.5.0
  • HIGH7.5CVE-2026-37461GoBGP has an out-of-bounds read in the ParseIP6Extended function
    from 0, < 4.4.0
  • HIGH7.5CVE-2026-41643GoBGP has Remote Denial of Service (Panic) in UpdatePathAttrs4ByteAs via Malformed BGP UPDATE
    from 0, < 4.3.0
  • HIGH7.5CVE-2026-41642GoBGP has Remote Denial of Service (Panic) via Malformed Well-known Path Attribute
    >= 4.3.0, < 4.4.0
  • HIGH7.5CVE-2026-30405GoBGP vulnerable to a denial of service via the NEXT_HOP path attribute in github.com/osrg/gobgp
    from 0, <= 4.3.0
  • HIGH7.5CVE-2026-30405GoBGP vulnerable to a denial of service via the NEXT_HOP path attribute in github.com/osrg/gobgp
    from 0
  • HIGH7.3CVE-2026-7736GoBGP has an Integer Underflow Issue
    from 0, < 4.4.0
  • MEDIUM5.3CVE-2026-7734GoBGP has an Improper Resource Shutdown or Release
    from 0, < 4.4.0