CVE-2024-40060

Name of the Vulnerable Software and Affected Versions go-chart version 2.1.1

Description The issue is related to an infinite loop in the drawCanvas() function. This function is part of the go-chart library and is used for rendering charts. The infinite loop can cause the program to consume excessive resources, leading to potential denial-of-service conditions.

Recommendations For go-chart version 2.1.1, consider disabling the drawCanvas() function until a patch is available to prevent potential exploitation. Restrict access to the drawCanvas() function to minimize the risk of excessive resource consumption. At the moment, there is no information about a newer version that contains a fix for this vulnerability.