| Bug | stretch | Description |
|---|
| CVE-2018-7187 | vulnerable (no DSA, ignored) | The "go get" implementation in Go 1.9.4, when the -insecure ... |
| CVE-2018-6574 | vulnerable (no DSA, ignored) | Go before 1.8.7, Go 1.9.x before 1.9.4, and Go 1.10 pre-releases before ... |
| CVE-2017-8932 | vulnerable (no DSA, ignored) | A bug in the standard library ScalarMult implementation of curve P-256 ... |
| CVE-2017-15042 | vulnerable (no DSA, ignored) | An unintended cleartext issue exists in Go before 1.8.4 and 1.9.x ... |
| CVE-2017-15041 | vulnerable (no DSA, ignored) | Go before 1.8.4 and 1.9.x before 1.9.1 allows "go get" remote command ... |