Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2021-44717

Опубликовано: 01 янв. 2022
Источник: debian

Описание

Go before 1.16.12 and 1.17.x before 1.17.5 on UNIX allows write operations to an unintended file or unintended network connection as a consequence of erroneous closing of file descriptor 0 after file-descriptor exhaustion.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
golang-1.17fixed1.17.5-1package
golang-1.15fixed1.15.15-5package
golang-1.15fixed1.15.15-1~deb11u2bullseyepackage
golang-1.11removedpackage
golang-1.8removedpackage
golang-1.7removedpackage

Примечания

  • https://github.com/golang/go/issues/50057

  • https://groups.google.com/g/golang-announce/c/hcmEScgc00k/m/ZWnOjeY4CQAJ

  • https://github.com/golang/go/commit/e46abcb816fb20663483f84fe52e370790a99bee (go1.17.5)

  • https://github.com/golang/go/commit/44a3fb49d99cc8a4de4925b69650f97bb07faf1d (go1.16.12)

Связанные уязвимости

ubuntu логотип

CVE-2021-44717

CVSS3: 4.8
ubuntu
около 4 лет назад

Go before 1.16.12 and 1.17.x before 1.17.5 on UNIX allows write operations to an unintended file or unintended network connection as a consequence of erroneous closing of file descriptor 0 after file-descriptor exhaustion.

redhat логотип

CVE-2021-44717

CVSS3: 4.8
redhat
около 4 лет назад

Go before 1.16.12 and 1.17.x before 1.17.5 on UNIX allows write operations to an unintended file or unintended network connection as a consequence of erroneous closing of file descriptor 0 after file-descriptor exhaustion.

nvd логотип

CVE-2021-44717

CVSS3: 4.8
nvd
около 4 лет назад

Go before 1.16.12 and 1.17.x before 1.17.5 on UNIX allows write operations to an unintended file or unintended network connection as a consequence of erroneous closing of file descriptor 0 after file-descriptor exhaustion.

github логотип

GHSA-x9r7-cjm2-h6cp

CVSS3: 4.8
github
около 4 лет назад

Go before 1.16.12 and 1.17.x before 1.17.5 on UNIX allows write operations to an unintended file or unintended network connection as a consequence of erroneous closing of file descriptor 0 after file-descriptor exhaustion.

suse-cvrf логотип

openSUSE-SU-2021:4186-1

suse-cvrf
около 4 лет назад

Security update for go1.17