Go-git Go-billy
2 CVEs affecting Go-git Go-billy. Latest disclosed: 2026-06-01. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-44973 | High | 8.1 | 2026-05-28 | Billy is an interface filesystem abstraction for Go. Prior to 5.9.0, multiple path traversal issues exist across different components of go-billy. Insufficient… |
CVE-2026-44740 | Medium | 6.5 | 2026-06-01 | Billy is an interface filesystem abstraction for Go. Prior to versions 5.9.0 and 6.0.0-alpha.1, multiple components may improperly handle crafted or malformed… |