{"schema_version":"1.6.0","id":"ROOT-APP-GOBINARY-CVE-2026-39828","modified":"2026-07-01T09:49:11Z","published":"2026-07-01T09:49:11Z","upstream":["CVE-2026-39828"],"summary":"CVE-2026-39828 in rootio-golang.org/x/crypto - Patched by Root","details":"Root has patched CVE-2026-39828 in the rootio-golang.org/x/crypto package for Root:Go. Multiple fixed versions available.","affected":[{"package":{"name":"rootio-golang.org/x/crypto","ecosystem":"Root:Go"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"v0.45.0-root.io.1"},{"fixed":"v0.49.0-root.io.1"},{"fixed":"v0.31.0-root.io.8"},{"fixed":"v0.46.0-root.io.1"},{"fixed":"v0.37.0-root.io.3"},{"fixed":"v0.35.0-root.io.3"},{"fixed":"v0.45.0-root.io.2"},{"fixed":"v0.40.0-root.io.5"},{"fixed":"v0.40.0-root.io.6"},{"fixed":"v0.46.0-root.io.2"}]}],"database_specific":{"all_fixed_versions":["v0.45.0-root.io.1","v0.49.0-root.io.1","v0.31.0-root.io.8","v0.46.0-root.io.1","v0.37.0-root.io.3","v0.35.0-root.io.3","v0.45.0-root.io.2","v0.40.0-root.io.5","v0.40.0-root.io.6","v0.46.0-root.io.2"],"root_patch_version":"","root_patched":true,"total_fixed_versions":10,"upstream_version":"v0.46.0-root.io.2"}},{"package":{"name":"golang.org/x/crypto","ecosystem":"Root:Go"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"v0.45.0-aikido.1"},{"fixed":"v0.49.0-aikido.1"},{"fixed":"v0.31.0-aikido.8"},{"fixed":"v0.46.0-aikido.1"},{"fixed":"v0.37.0-aikido.3"},{"fixed":"v0.35.0-aikido.3"},{"fixed":"v0.45.0-aikido.2"},{"fixed":"v0.40.0-aikido.5"},{"fixed":"v0.40.0-aikido.6"},{"fixed":"v0.46.0-aikido.2"}]}],"database_specific":{"all_fixed_versions":["v0.45.0-aikido.1","v0.49.0-aikido.1","v0.31.0-aikido.8","v0.46.0-aikido.1","v0.37.0-aikido.3","v0.35.0-aikido.3","v0.45.0-aikido.2","v0.40.0-aikido.5","v0.40.0-aikido.6","v0.46.0-aikido.2"],"root_patch_version":"","root_patched":true,"total_fixed_versions":10,"upstream_version":"v0.46.0-aikido.2"}}],"database_specific":{"distro":"gobinary","distro_version":"","severity":"HIGH","source":"Root"}}
