Количество 24
Количество 24
CVE-2022-41724
Large handshake records may cause panics in crypto/tls. Both clients and servers may send large TLS handshake records which cause servers and clients, respectively, to panic when attempting to construct responses. This affects all TLS 1.3 clients, TLS 1.2 clients which explicitly enable session resumption (by setting Config.ClientSessionCache to a non-nil value), and TLS 1.3 servers which request client certificates (by setting Config.ClientAuth >= RequestClientCert).
CVE-2022-41724
Large handshake records may cause panics in crypto/tls. Both clients and servers may send large TLS handshake records which cause servers and clients, respectively, to panic when attempting to construct responses. This affects all TLS 1.3 clients, TLS 1.2 clients which explicitly enable session resumption (by setting Config.ClientSessionCache to a non-nil value), and TLS 1.3 servers which request client certificates (by setting Config.ClientAuth >= RequestClientCert).
CVE-2022-41724
Large handshake records may cause panics in crypto/tls. Both clients and servers may send large TLS handshake records which cause servers and clients, respectively, to panic when attempting to construct responses. This affects all TLS 1.3 clients, TLS 1.2 clients which explicitly enable session resumption (by setting Config.ClientSessionCache to a non-nil value), and TLS 1.3 servers which request client certificates (by setting Config.ClientAuth >= RequestClientCert).
CVE-2022-41724
Panic on large handshake records in crypto/tls
CVE-2022-41724
Large handshake records may cause panics in crypto/tls. Both clients a ...
GHSA-89mw-w342-mqrr
Large handshake records may cause panics in crypto/tls. Both clients and servers may send large TLS handshake records which cause servers and clients, respectively, to panic when attempting to construct responses. This affects all TLS 1.3 clients, TLS 1.2 clients which explicitly enable session resumption (by setting Config.ClientSessionCache to a non-nil value), and TLS 1.3 servers which request client certificates (by setting Config.ClientAuth >= RequestClientCert).
BDU:2024-03152
Уязвимость пакета crypto/tls языка программирования Golang, позволяющая нарушителю вызвать отказ в обслуживании
RLSA-2023:3083
Moderate: go-toolset:Rocky Linux8 security and bug fix update
ELSA-2023-3083
ELSA-2023-3083: go-toolset:ol8 security and bug fix update (MODERATE)
SUSE-SU-2023:0869-1
Security update for go1.18
SUSE-SU-2023:0871-1
Security update for container-suseconnect
SUSE-SU-2023:0735-1
Security update for go1.20
SUSE-SU-2023:0733-1
Security update for go1.19
ELSA-2023-6380
ELSA-2023-6380: runc security update (MODERATE)
ELSA-2023-6402
ELSA-2023-6402: containernetworking-plugins security and bug fix update (MODERATE)
ELSA-2023-6473
ELSA-2023-6473: buildah security update (MODERATE)
ELSA-2023-6363
ELSA-2023-6363: skopeo security update (MODERATE)
ELSA-2023-6474
ELSA-2023-6474: podman security, bug fix, and enhancement update (MODERATE)
RLSA-2023:6938
Moderate: container-tools:4.0 security and bug fix update
ELSA-2023-6938
ELSA-2023-6938: container-tools:4.0 security and bug fix update (MODERATE)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-41724 Large handshake records may cause panics in crypto/tls. Both clients and servers may send large TLS handshake records which cause servers and clients, respectively, to panic when attempting to construct responses. This affects all TLS 1.3 clients, TLS 1.2 clients which explicitly enable session resumption (by setting Config.ClientSessionCache to a non-nil value), and TLS 1.3 servers which request client certificates (by setting Config.ClientAuth >= RequestClientCert). | CVSS3: 7.5 | 0% Низкий | почти 3 года назад |
 | CVE-2022-41724 Large handshake records may cause panics in crypto/tls. Both clients and servers may send large TLS handshake records which cause servers and clients, respectively, to panic when attempting to construct responses. This affects all TLS 1.3 clients, TLS 1.2 clients which explicitly enable session resumption (by setting Config.ClientSessionCache to a non-nil value), and TLS 1.3 servers which request client certificates (by setting Config.ClientAuth >= RequestClientCert). | CVSS3: 7.5 | 0% Низкий | почти 3 года назад |
 | CVE-2022-41724 Large handshake records may cause panics in crypto/tls. Both clients and servers may send large TLS handshake records which cause servers and clients, respectively, to panic when attempting to construct responses. This affects all TLS 1.3 clients, TLS 1.2 clients which explicitly enable session resumption (by setting Config.ClientSessionCache to a non-nil value), and TLS 1.3 servers which request client certificates (by setting Config.ClientAuth >= RequestClientCert). | CVSS3: 7.5 | 0% Низкий | почти 3 года назад |
 | CVE-2022-41724 Panic on large handshake records in crypto/tls | CVSS3: 7.5 | 0% Низкий | 3 месяца назад |
| CVE-2022-41724 Large handshake records may cause panics in crypto/tls. Both clients a ... | CVSS3: 7.5 | 0% Низкий | почти 3 года назад |
| GHSA-89mw-w342-mqrr Large handshake records may cause panics in crypto/tls. Both clients and servers may send large TLS handshake records which cause servers and clients, respectively, to panic when attempting to construct responses. This affects all TLS 1.3 clients, TLS 1.2 clients which explicitly enable session resumption (by setting Config.ClientSessionCache to a non-nil value), and TLS 1.3 servers which request client certificates (by setting Config.ClientAuth >= RequestClientCert). | CVSS3: 7.5 | 0% Низкий | почти 3 года назад |
 | BDU:2024-03152 Уязвимость пакета crypto/tls языка программирования Golang, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 7.5 | 0% Низкий | почти 3 года назад |
 | RLSA-2023:3083 Moderate: go-toolset:Rocky Linux8 security and bug fix update | больше 2 лет назад | ||
| ELSA-2023-3083 ELSA-2023-3083: go-toolset:ol8 security and bug fix update (MODERATE) | больше 2 лет назад | ||
 | SUSE-SU-2023:0869-1 Security update for go1.18 | больше 2 лет назад | ||
| SUSE-SU-2023:0871-1 Security update for container-suseconnect | больше 2 лет назад | ||
| SUSE-SU-2023:0735-1 Security update for go1.20 | больше 2 лет назад | ||
| SUSE-SU-2023:0733-1 Security update for go1.19 | больше 2 лет назад | ||
| ELSA-2023-6380 ELSA-2023-6380: runc security update (MODERATE) | около 2 лет назад | ||
| ELSA-2023-6402 ELSA-2023-6402: containernetworking-plugins security and bug fix update (MODERATE) | около 2 лет назад | ||
| ELSA-2023-6473 ELSA-2023-6473: buildah security update (MODERATE) | около 2 лет назад | ||
| ELSA-2023-6363 ELSA-2023-6363: skopeo security update (MODERATE) | около 2 лет назад | ||
| ELSA-2023-6474 ELSA-2023-6474: podman security, bug fix, and enhancement update (MODERATE) | около 2 лет назад | ||
| RLSA-2023:6938 Moderate: container-tools:4.0 security and bug fix update | 16 дней назад | ||
| ELSA-2023-6938 ELSA-2023-6938: container-tools:4.0 security and bug fix update (MODERATE) | около 2 лет назад |
Уязвимостей на страницу