Vulnerability Report: GO-2025-3973

  • CVE-2025-59354, GHSA-hx2h-vjw2-8r54
  • Affects: d7y.io/dragonfly/v2, github.com/dragonflyoss/dragonfly
  • Published: Sep 24, 2025

DragonFly has weak integrity checks for downloaded files in d7y.io/dragonfly

For detailed information about this vulnerability, visit https://github.com/dragonflyoss/dragonfly/security/advisories/GHSA-hx2h-vjw2-8r54 or https://nvd.nist.gov/vuln/detail/CVE-2025-59354.

Affected Packages

  • Path
    Versions
    Symbols

Aliases

References

Feedback

See anything missing or incorrect? Suggest an edit to this report.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.