Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2021-3076

Опубликовано: 12 авг. 2021
Источник: oracle-oval
Платформа: Oracle Linux 8

Описание

ELSA-2021-3076: go-toolset:ol8 security, bug fix, and enhancement update (MODERATE)

golang [1.15.14-1]

  • Rebase to go-1.15.14-1-openssl-fips
  • Resolves: rhbz#1982287
  • Addresses CVE-2021-34558

[1.15.13-4]

  • Related: rhbz#1978567

go-toolset [1.15.14-1]

  • Rebase to go-1.15.14-1-openssl-fips
  • Resolves: rhbz#1982287
  • Addresses CVE-2021-34558

[1.15.13-2]

  • Related: rhbz#1978567

Обновленные пакеты

Oracle Linux 8

Oracle Linux aarch64

Module go-toolset:ol8 is enabled

go-toolset

1.15.14-1.module+el8.4.0+20290+7af514f4

golang

1.15.14-1.module+el8.4.0+20290+7af514f4

golang-bin

1.15.14-1.module+el8.4.0+20290+7af514f4

golang-docs

1.15.14-1.module+el8.4.0+20290+7af514f4

golang-misc

1.15.14-1.module+el8.4.0+20290+7af514f4

golang-src

1.15.14-1.module+el8.4.0+20290+7af514f4

golang-tests

1.15.14-1.module+el8.4.0+20290+7af514f4

Oracle Linux x86_64

Module go-toolset:ol8 is enabled

delve

1.5.0-2.0.1.module+el8.4.0+20021+8a86d991

go-toolset

1.15.14-1.module+el8.4.0+20290+7af514f4

golang

1.15.14-1.module+el8.4.0+20290+7af514f4

golang-bin

1.15.14-1.module+el8.4.0+20290+7af514f4

golang-docs

1.15.14-1.module+el8.4.0+20290+7af514f4

golang-misc

1.15.14-1.module+el8.4.0+20290+7af514f4

golang-race

1.15.14-1.module+el8.4.0+20290+7af514f4

golang-src

1.15.14-1.module+el8.4.0+20290+7af514f4

golang-tests

1.15.14-1.module+el8.4.0+20290+7af514f4

Связанные CVE

CVE-2021-31525
CVE-2021-27918
CVE-2021-33196
CVE-2021-34558

Ссылки на источники

Связанные уязвимости

ubuntu логотип

CVE-2021-31525

CVSS3: 5.9
ubuntu
около 4 лет назад

net/http in Go before 1.15.12 and 1.16.x before 1.16.4 allows remote attackers to cause a denial of service (panic) via a large header to ReadRequest or ReadResponse. Server, Transport, and Client can each be affected in some configurations.

redhat логотип

CVE-2021-31525

CVSS3: 5.9
redhat
около 4 лет назад

net/http in Go before 1.15.12 and 1.16.x before 1.16.4 allows remote attackers to cause a denial of service (panic) via a large header to ReadRequest or ReadResponse. Server, Transport, and Client can each be affected in some configurations.

nvd логотип

CVE-2021-31525

CVSS3: 5.9
nvd
около 4 лет назад

net/http in Go before 1.15.12 and 1.16.x before 1.16.4 allows remote attackers to cause a denial of service (panic) via a large header to ReadRequest or ReadResponse. Server, Transport, and Client can each be affected in some configurations.

msrc логотип

CVE-2021-31525

CVSS3: 5.9
msrc
около 4 лет назад

Описание отсутствует

debian логотип

CVE-2021-31525

CVSS3: 5.9
debian
около 4 лет назад

net/http in Go before 1.15.12 and 1.16.x before 1.16.4 allows remote a ...