Уязвимость функции ticket_age_add языка программирования Go, позволяющая нарушителю получить несанкционированный доступ к идентификаторам сеанса

Non-random values for ticket_age_add in session tickets in crypto/tls before Go 1.17.11 and Go 1.18.3 allow an attacker that can observe TLS handshakes to correlate successive connections by comparing ticket ages during session resumption.

Non-random values for ticket_age_add in session tickets in crypto/tls before Go 1.17.11 and Go 1.18.3 allow an attacker that can observe TLS handshakes to correlate successive connections by comparing ticket ages during session resumption.

Non-random values for ticket_age_add in session tickets in crypto/tls before Go 1.17.11 and Go 1.18.3 allow an attacker that can observe TLS handshakes to correlate successive connections by comparing ticket ages during session resumption.

Non-random values for ticket_age_add in session tickets in crypto/tls ...

Non-random values for ticket_age_add in session tickets in crypto/tls before Go 1.17.11 and Go 1.18.3 allow an attacker that can observe TLS handshakes to correlate successive connections by comparing ticket ages during session resumption.

Множественные уязвимости skopeo

ELSA-2023-2367: containernetworking-plugins security and bug fix update (MODERATE)

ELSA-2023-2283: skopeo security and bug fix update (MODERATE)

ELSA-2023-2282: podman security and bug fix update (MODERATE)

ELSA-2023-2253: buildah security and bug fix update (MODERATE)

Security update for go1.18

Security update for go1.17

ELSA-2022-17956: go-toolset:ol8addon security update (IMPORTANT)

ELSA-2023-2758: container-tools:ol8 security, bug fix, and enhancement update (MODERATE)

Security update for go1.18-openssl