Stack exhaustion in all Parse functions in go/parser

GO-2024-3105 · BIT-golang-2024-34155 · CVE-2024-34155

Published Sep 6, 2024 · Modified Feb 24, 2026

Description

Calling any of the Parse functions on Go source code which contains deeply nested literals can cause a panic due to stack exhaustion.

Ready to move

Free, no credit card | First findings in minutes