CVE-2021-38297

Опубликовано: 18 окт. 2021

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 7.5

CVSS3: 9.8

Описание

Go before 1.16.9 and 1.17.x before 1.17.2 has a Buffer Overflow via large arguments in a function invocation from a WASM module, when GOARCH=wasm GOOS=js is used.

Релиз	Статус	Примечание
bionic	DNE
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/focal	DNE
focal	DNE
hirsute	DNE
impish	DNE
jammy	DNE
kinetic	DNE
lunar	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	DNE
esm-infra-legacy/trusty	needs-triage
esm-infra/bionic	needs-triage
esm-infra/focal	DNE
esm-infra/xenial	needs-triage
focal	DNE
hirsute	DNE
impish	DNE
jammy	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	DNE
esm-apps/bionic	needs-triage
esm-apps/jammy	needs-triage
esm-apps/xenial	needs-triage
esm-infra-legacy/trusty	DNE
esm-infra/focal	needs-triage
focal	ignored	end of standard support, was needs-triage
hirsute	ignored	end of life
impish	ignored	end of life

Показывать по

Релиз	Статус	Примечание
bionic	DNE
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/focal	needs-triage
focal	ignored	end of standard support, was needs-triage
hirsute	ignored	end of life
impish	DNE
jammy	DNE
kinetic	DNE
lunar	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
esm-infra-legacy/trusty	DNE
esm-infra/focal	DNE
focal	DNE
hirsute	ignored	end of life
impish	ignored	end of life
trusty	DNE
trusty/esm	DNE
upstream	needs-triage
xenial	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	DNE
esm-apps/bionic	needs-triage
esm-apps/focal	needs-triage
esm-infra-legacy/trusty	DNE
focal	ignored	end of standard support, was needs-triage
hirsute	ignored	end of life
impish	ignored	end of life
jammy	DNE
kinetic	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
devel	DNE
esm-infra-legacy/trusty	DNE
esm-infra/focal	DNE
esm-infra/xenial	needs-triage
focal	DNE
hirsute	DNE
impish	DNE
jammy	DNE
kinetic	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	DNE
esm-apps/bionic	needs-triage
esm-infra-legacy/trusty	DNE
esm-infra/focal	DNE
focal	DNE
hirsute	DNE
impish	DNE
jammy	DNE
kinetic	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	DNE
esm-apps/bionic	needs-triage
esm-infra-legacy/trusty	DNE
esm-infra/focal	DNE
focal	DNE
hirsute	DNE
impish	DNE
jammy	DNE
kinetic	DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 90%

0.05854

Низкий

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

CVE-2021-38297

CVSS3: 9.8

redhat

около 4 лет назад

Go before 1.16.9 and 1.17.x before 1.17.2 has a Buffer Overflow via large arguments in a function invocation from a WASM module, when GOARCH=wasm GOOS=js is used.

CVE-2021-38297

CVSS3: 9.8

nvd

около 4 лет назад

Go before 1.16.9 and 1.17.x before 1.17.2 has a Buffer Overflow via large arguments in a function invocation from a WASM module, when GOARCH=wasm GOOS=js is used.

CVE-2021-38297

CVSS3: 9.8

msrc

около 4 лет назад

Go before 1.16.9 and 1.17.x before 1.17.2 has a Buffer Overflow via large arguments in a function invocation from a WASM module when GOARCH=wasm GOOS=js is used.

CVE-2021-38297

CVSS3: 9.8

debian

около 4 лет назад

Go before 1.16.9 and 1.17.x before 1.17.2 has a Buffer Overflow via la ...

openSUSE-SU-2021:3488-1

suse-cvrf

около 4 лет назад

Security update for go1.17

EPSS

Процентиль: 90%

0.05854

Низкий

7.5 High

CVSS2

9.8 Critical

CVSS3

CVE-2021-38297

Описание

Пакет golang

Пакет golang-1.10

Пакет golang-1.13

Пакет golang-1.14

Пакет golang-1.15

Пакет golang-1.16

Пакет golang-1.6

Пакет golang-1.8

Пакет golang-1.9

Ссылки на источники

Связанные уязвимости