Synced 17 Jun 2026 22:27 UTC Account

Is Go 1.19.13 patched?

Google · cycle 1.19 · end of life · Official site ↗
1.19.130/100Critical · exploited

Current stable (1.26.4): 100/100

Minimum safe version1.25.10

1.19.13 has 30 open critical-or-high vulnerabilities. Run 1.25.10 or later to clear them. See what 1.25.10 fixes →

Health score0/100
Open issues55
Exploited now1
Cycle 1.19 EOL2023-09-06
Latest release1.26.4

Summary iPlain-English security status for Go 1.19.13, built from its CVEs, active-exploitation data, end-of-life date and latest release.

Go 1.19.13 is part of the 1.19 release line. 1 actively-exploited vulnerability affects it (CISA KEV). The minimum safe version is 1.25.10 — upgrade to it or later to clear the open critical/high issues. The 1.19 line reached end-of-life on 2023-09-06, so it no longer receives security patches. The latest supported Go release is 1.26.4.

Known issues affecting 1.19.13

Exploited first, then by exploitation probability.

CVE-2023-44487 HIGH exploited EPSS 100% → fixed in 1.21.3 CVE-2023-45283 HIGH EPSS 3% → fixed in 1.21.4 CVE-2024-24790 CRITICAL EPSS 2% → fixed in 1.22.4 CVE-2023-39323 HIGH EPSS 2% → fixed in 1.21.2 CVE-2023-45287 HIGH EPSS 1% → fixed in 1.20.0 CVE-2023-39326 MEDIUM EPSS 1% → fixed in 1.21.5 CVE-2023-45285 HIGH EPSS 1% → fixed in 1.21.5 CVE-2023-45284 MEDIUM EPSS 1% → fixed in 1.21.4 CVE-2023-39318 MEDIUM EPSS 1% → fixed in 1.21.1 CVE-2023-39319 MEDIUM EPSS 1% → fixed in 1.21.1 CVE-2025-61726 HIGH EPSS 1% → fixed in 1.25.6 CVE-2025-68121 CRITICAL EPSS 1% → fixed in 1.25.7 CVE-2025-61728 MEDIUM EPSS 1% → fixed in 1.25.6 CVE-2026-39836 HIGH EPSS 1% → fixed in 1.26.3 CVE-2025-61723 HIGH EPSS 1% → fixed in 1.25.2 CVE-2026-42499 HIGH EPSS 1% → fixed in 1.26.3 CVE-2026-33814 HIGH EPSS 1% → fixed in 1.26.3 CVE-2026-27143 CRITICAL EPSS 1% → fixed in 1.26.2 CVE-2026-27140 HIGH EPSS 1% → fixed in 1.26.2 CVE-2026-25679 HIGH EPSS 1% → fixed in 1.25.8

Other Go versions

Check another release line of Go.

Go 1.26.4Go 1.25.11Go 1.24.13Go 1.23.12Go 1.22.12Go 1.21.13Go 1.20.14Go 1.18.10Go 1.17.13Go 1.16.15Go 1.15.15Go 1.14.15Go 1.13.15Go 1.12.17Go 1.11.13Go 1.10.8

Frequently asked

Is Go 1.19.13 patched?

No — 1 actively-exploited vulnerability affects Go 1.19.13. Upgrade to at least 1.25.10.

What version should I upgrade Go 1.19.13 to?

Upgrade Go 1.19.13 to at least 1.25.10 to clear its 30 open critical-or-high vulnerabilities.

When does Go 1.19 reach end-of-life?

Go 1.19 reached end-of-life on 2023-09-06 and no longer receives security patches.

What is the latest version of Go?

The latest supported Go release is 1.26.4.

Is Go 1.19.13 still receiving security updates?

No — Go 1.19.13 is on the 1.19 line, which reached end-of-life on 2023-09-06 and no longer receives security updates. Upgrade to 1.26.4 or later to stay supported.

Informational only, from public data (NVD · CISA KEV · EPSS · endoflife.date), and can lag or miss vendor-specific fixes. Always confirm against Google's official advisory before you patch or upgrade — Go official site ↗