Vulnerability Report: GO-2025-3488

  • CVE-2025-22868
  • Affects: golang.org/x/oauth2
  • Published: Feb 26, 2025

An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing.

Affected Packages

Aliases

References

Credits

  • jub0bs

Feedback

See anything missing or incorrect? Suggest an edit to this report.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.