Fixed SOCKS issues #38
Ne0nd0gAnnotations
4 errors, 2 warnings, and 2 notices
|
Analyze (go)
jwe.Encrypter.Deconstruct calls jose.JSONWebEncryption.Decrypt
|
|
Analyze (go)
utls.Transport.tlsConnect calls utls.UConn.Handshake, which eventually calls common.Poly.CompressTo
|
|
Analyze (go)
Process completed with exit code 3.
|
|
Vulnerable declared dependency:
go.mod#L18
Dependency go:golang.org/x/crypto:v0.17.0 is vulnerable, safe version v0.21.0
* [CVE-2023-42818](https://devhub.checkmarx.com/cve-details/CVE-2023-42818?utm_source=jetbrains&utm_medium=referral) 9.8 Improper Restriction of Excessive Authentication Attempts vulnerability with High severity found
Results powered by [Checkmarx](https://checkmarx.com)(c)
|
|
Analyze (go)
Failed to restore: "/usr/bin/tar" failed with error: The process '/usr/bin/tar' failed with exit code 2
|
|
Vulnerable declared dependency:
go.mod#L28
Dependency go:github.com/cloudflare/circl:v1.3.6 is vulnerable, safe version v1.3.7
* [Cx3111c14e-80ff](https://devhub.checkmarx.com/cve-details/Cx3111c14e-80ff?utm_source=jetbrains&utm_medium=referral) 7.4 Observable Timing Discrepancy vulnerability with High severity found
Results powered by [Checkmarx](https://checkmarx.com)(c)
|
|
Type assertion on errors fails on wrapped errors:
clients/udp/udp.go#L507
Type switch on errors fails on wrapped errors
|
|
Vulnerable declared dependency:
go.mod#L13
Dependency go:github.com/go-jose/go-jose/v3:v3.0.1 is vulnerable, safe version v3.0.3
* [CVE-2024-28180](https://devhub.checkmarx.com/cve-details/CVE-2024-28180?utm_source=jetbrains&utm_medium=referral) 4.3 Improper Handling of Highly Compressed Data (Data Amplification) vulnerability with Medium severity found
Results powered by [Checkmarx](https://checkmarx.com)(c)
|