Описание
Go before 1.16.9 and 1.17.x before 1.17.2 has a Buffer Overflow via large arguments in a function invocation from a WASM module, when GOARCH=wasm GOOS=js is used.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| golang-1.17 | fixed | 1.17.2-1 | package | |
| golang-1.16 | fixed | 1.16.9-1 | package | |
| golang-1.15 | fixed | 1.15.15-5 | package | |
| golang-1.15 | fixed | 1.15.15-1~deb11u2 | bullseye | package |
| golang-1.11 | removed | package | ||
| golang-1.8 | not-affected | package | ||
| golang-1.7 | not-affected | package |
Примечания
https://github.com/golang/go/commit/77f2750f4398990eed972186706f160631d7dae4
https://groups.google.com/g/golang-announce/c/AEBu9j7yj5A
https://github.com/golang/go/issues/48797
EPSS
Связанные уязвимости
Go before 1.16.9 and 1.17.x before 1.17.2 has a Buffer Overflow via large arguments in a function invocation from a WASM module, when GOARCH=wasm GOOS=js is used.
Go before 1.16.9 and 1.17.x before 1.17.2 has a Buffer Overflow via large arguments in a function invocation from a WASM module, when GOARCH=wasm GOOS=js is used.
Go before 1.16.9 and 1.17.x before 1.17.2 has a Buffer Overflow via large arguments in a function invocation from a WASM module, when GOARCH=wasm GOOS=js is used.
EPSS