ELSA-2022-20694

Опубликовано: 07 сент. 2022

Источник: oracle-oval

Платформа: Oracle Linux 7

Описание

ELSA-2022-20694: golang security update (IMPORTANT)

[1.18.5-1.0.1]

golang-1.18.5 package initial release
Reviewed-by: Jose E. Marchesi jose.marchesi@oracle.com

[1.18.4-1.0.1]

golang-1.18.4 package initial release
Reviewed-by: Jose E. Marchesi jose.marchesi@oracle.com

[1.18.3-1.0.1]

golang-1.18.3-1 package initial release
Add patch to skip ed25519vectors test that fetches a file from the internet
Reviewed-by: Jose E. Marchesi jose.marchesi@oracle.com

[1.17.5-1]

golang-1.17.5-1 package initial release, patch to skip ed25519vectors
test that fetches a file from the internet.
Reviewed-by: Jose E. Marchesi jose.marchesi@oracle.com

[1.17.2-1]

golang-1.17.2-1 package initial release
Reviewed-by: Jose E. Marchesi jose.marchesi@oracle.com

[1.17-1]

golang-1.17-1 package initial release
Reviewed-by: Jose E. Marchesi jose.marchesi@oracle.com

[1.16.7-1]

golang-1.16.7-1 package initial release
Reviewed-by: Jose E. Marchesi jose.marchesi@oracle.com

[1.16.4-1]

golang-1.16.4-1 package initial release
Reviewed-by: Jose E. Marchesi jose.marchesi@oracle.com

[1.16.3-1]

golang-1.16.3-1 package initial release
Reviewed-by: Jose E. Marchesi jose.marchesi@oracle.com

[1.16.2-1]

golang-1.16.2-1 package initial release
Reviewed-by: Jose E. Marchesi jose.marchesi@oracle.com

[1.16-1]

golang-1.16-1 package initial release
Reviewed-by: Jose E. Marchesi jose.marchesi@oracle.com

Обновленные пакеты

Oracle Linux 7

Oracle Linux aarch64

golang

1.18.5-1.0.1.el7

golang-bin

1.18.5-1.0.1.el7

golang-docs

1.18.5-1.0.1.el7

golang-misc

1.18.5-1.0.1.el7

golang-src

1.18.5-1.0.1.el7

golang-tests

1.18.5-1.0.1.el7

Oracle Linux x86_64

golang

1.18.5-1.0.1.el7

golang-bin

1.18.5-1.0.1.el7

golang-docs

1.18.5-1.0.1.el7

golang-misc

1.18.5-1.0.1.el7

golang-src

1.18.5-1.0.1.el7

golang-tests

1.18.5-1.0.1.el7

Связанные CVE

CVE-2022-32189

Ссылки на источники

Связанные уязвимости

CVE-2022-32189

CVSS3: 7.5

ubuntu

почти 3 года назад

A too-short encoded message can cause a panic in Float.GobDecode and Rat GobDecode in math/big in Go before 1.17.13 and 1.18.5, potentially allowing a denial of service.

CVE-2022-32189

CVSS3: 6.5

redhat

почти 3 года назад

A too-short encoded message can cause a panic in Float.GobDecode and Rat GobDecode in math/big in Go before 1.17.13 and 1.18.5, potentially allowing a denial of service.

CVE-2022-32189

CVSS3: 7.5

nvd

почти 3 года назад

A too-short encoded message can cause a panic in Float.GobDecode and Rat GobDecode in math/big in Go before 1.17.13 and 1.18.5, potentially allowing a denial of service.

CVE-2022-32189

CVSS3: 7.5

msrc

почти 3 года назад

Описание отсутствует

CVE-2022-32189

CVSS3: 7.5

debian

почти 3 года назад

A too-short encoded message can cause a panic in Float.GobDecode and R ...