Ubuntu Security Notice 7111-1 - Philippe Antoine discovered that Go incorrectly handled crafted HTTP/2 streams. An attacker could possibly use this issue to cause a denial of service. Marten Seemann discovered that Go did not properly manage memory under certain circumstances. An attacker could possibly use this issue to cause a panic resulting in a denial of service. Ameya Darshan and Jakob Ackermann discovered that Go did not properly validate the amount of memory and disk files ReadForm can consume. An attacker could possibly use this issue to cause a panic resulting in a denial of service.
8309e2cc82bec72641de9766c00b5b04be56b3f96d79c53bdc77264e677a87a9Red Hat Security Advisory 2024-6188-03 - An update for runc is now available for Red Hat Enterprise Linux 9.
f78c8ccc86ed9282f1be7324083ad70bffecb2092b196c60749dc28716079219Red Hat Security Advisory 2024-6186-03 - An update for containernetworking-plugins is now available for Red Hat Enterprise Linux 9.
9320b2d707cbfa1f1d1709908b7e901e5598929eacabcaf7139dd15285661ed9Red Hat Security Advisory 2024-6195-03 - An update for skopeo is now available for Red Hat Enterprise Linux 9.
2188923b85692dd38bd2cf77fcbb810b3713b22ff61f883b1ff8adbdd0013097Red Hat Security Advisory 2024-6189-03 - An update for buildah is now available for Red Hat Enterprise Linux 9.
b1c775707ca1e7e493b8da8fda60fcc475290d7661bbce2de0c41fa55a17ca40Red Hat Security Advisory 2024-6187-03 - An update for gvisor-tap-vsock is now available for Red Hat Enterprise Linux 9.
ff2cf134b45cef005cc961d56e412ce3eccbe70dca00abdbacaaf9d2bb8c606dGentoo Linux Security Advisory 202408-7 - Multiple vulnerabilities have been discovered in Go, the worst of which could lead to information leakage or a denial of service. Versions greater than or equal to 1.22.3 are affected.
2ccc903a817532e66048ef0c9f0125745b5ac34d11a79d6ecf529ae860f2676dUbuntu Security Notice 6886-1 - It was discovered that the Go net/http module did not properly handle the requests when request\'s headers exceed MaxHeaderBytes. An attacker could possibly use this issue to cause a panic resulting into a denial of service. This issue only affected Go 1.21 in Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. It was discovered that the Go net/http module did not properly validate the subdomain match or exact match of the initial domain. An attacker could possibly use this issue to read sensitive information. This issue only affected Go 1.21 in Ubuntu 20.04 LTS and Ubuntu 22.04 LTS.
66197d055fed6c97073d4c955f114f48acbb90bca8321f4984ae151d375a3e75
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed