/
DirectorySecurity Advisories
Sign In
Security Advisories

CVE-2024-55885

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2024-55885

CGA ID

CGA-mm7j-76jj-v2xq

Severity

Unknown

Description

beego is an open-source web framework for the Go programming language. Versions of beego prior to 2.3.4 use MD5 as a hashing algorithm. MD5 is no longer considered secure against well-funded opponents due to its vulnerability to collision attacks. Version 2.3.4 replaces MD5 with SHA256.

References

  • https://images.chainguard.dev/security/CGA-mm7j-76jj-v2xq
  • https://github.com/advisories/GHSA-9j3m-fr7q-jxfw
  • https://github.com/beego/beego/security/advisories/GHSA-9j3m-fr7q-jxfw
  • https://github.com/beego/beego/commit/e7fa4835f71f47ab1d13afd638cebf661800d5a4

Affected packages

Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2025 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Products

Chainguard ContainersChainguard LibrariesChainguard VMs

Why Chainguard

Container Image SecurityVulnerability RemediationCompliance and Risk MitigationSoftware Supply Chain SecurityAI/ML Security

Customers

Customer StoriesChainguard Love

Company

About UsPricingContact UsOpen SourceCareersNewsroomLegal

Resources

Unchained BlogEventsTrust CenterDocumentation