Previous versions of Go have an issue where a specially crafted input to a math operation can cause a panic (CVE-2020-28362). This bug is fixed in Go 1.15.5.