| ##### |
| # Test basic binary scanning with text output |
| $ govulncheck -mode=binary ${common_vuln_binary} --> FAIL 3 |
| === Symbol Results === |
| |
| Vulnerability #1: GO-2021-0265 |
| A maliciously crafted path can cause Get and other query functions to |
| consume excessive amounts of CPU and time. |
| More info: https://pkg.go.dev/vuln/GO-2021-0265 |
| Module: github.com/tidwall/gjson |
| Found in: github.com/tidwall/gjson@v1.6.5 |
| Fixed in: github.com/tidwall/gjson@v1.9.3 |
| Vulnerable symbols found: |
| #1: gjson.Get |
| #2: gjson.Result.Get |
| |
| Vulnerability #2: GO-2021-0054 |
| Due to improper bounds checking, maliciously crafted JSON objects can cause |
| an out-of-bounds panic. If parsing user input, this may be used as a denial |
| of service vector. |
| More info: https://pkg.go.dev/vuln/GO-2021-0054 |
| Module: github.com/tidwall/gjson |
| Found in: github.com/tidwall/gjson@v1.6.5 |
| Fixed in: github.com/tidwall/gjson@v1.6.6 |
| Vulnerable symbols found: |
| #1: gjson.Result.ForEach |
| |
| Your code is affected by 2 vulnerabilities from 1 module. |
| This scan also found 1 vulnerability in packages you import and 1 vulnerability |
| in modules you require, but your code doesn't appear to call these |
| vulnerabilities. |
| Use '-show verbose' for more details. |
