Previously, slices and arrays accessed using induction variables were sometimes incorrectly proved in-bound. If the induction variable used for indexing were to overflow or underflow, it could allow access to memory beyond the scope of the original slice or array. To prevent this behavior, the compiler ensures that any mutated induction variable that overflows/underflows with respect to its loop condition is not used for bound check elimination.
| Vendor | Product | Versions |
|---|---|---|
| go toolchain | cmd/compile | 0, 1.26.0-0, 1.25.8, 1.26.1 |
Updated description with detailed technical information, added new CWE, marked exploit as available, and included additional CVE tags.
Updated severity to CRITICAL, added affected versions 1.25.8 and 1.26.1, and noted that no exploit is available.
Initial creation
