Lucene search
AlmaLinuxALSA-2024:1462HistoryMar 21, 2024 - 12:00 a.m.
Important: golang security update
2024-03-2100:00:00
errata.almalinux.org
14
golang
security update
rsa encryption
memory leaks
cve-2024-1394
unix
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.5 High
AI Score
Confidence
Low
0.0005 Low
EPSS
Percentile
17.2%
The golang packages provide the Go programming language compiler.
Security Fix(es):
- golang: golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads (CVE-2024-1394)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| almalinux | 9 | noarch | golang-tests | < 1.20.12-2.el9_3 | golang-tests-1.20.12-2.el9_3.noarch.rpm |
| almalinux | 9 | noarch | golang-misc | < 1.20.12-2.el9_3 | golang-misc-1.20.12-2.el9_3.noarch.rpm |
| almalinux | 9 | noarch | golang-docs | < 1.20.12-2.el9_3 | golang-docs-1.20.12-2.el9_3.noarch.rpm |
| almalinux | 9 | noarch | golang-src | < 1.20.12-2.el9_3 | golang-src-1.20.12-2.el9_3.noarch.rpm |
| almalinux | 9 | ppc64le | go-toolset | < 1.20.12-2.el9_3 | go-toolset-1.20.12-2.el9_3.ppc64le.rpm |
| almalinux | 9 | ppc64le | golang-bin | < 1.20.12-2.el9_3 | golang-bin-1.20.12-2.el9_3.ppc64le.rpm |
| almalinux | 9 | ppc64le | golang | < 1.20.12-2.el9_3 | golang-1.20.12-2.el9_3.ppc64le.rpm |
| almalinux | 9 | x86_64 | golang | < 1.20.12-2.el9_3 | golang-1.20.12-2.el9_3.x86_64.rpm |
| almalinux | 9 | x86_64 | golang-bin | < 1.20.12-2.el9_3 | golang-bin-1.20.12-2.el9_3.x86_64.rpm |
| almalinux | 9 | x86_64 | go-toolset | < 1.20.12-2.el9_3 | go-toolset-1.20.12-2.el9_3.x86_64.rpm |
Related
nessus
nessus
Rocky Linux 8 : grafana (RLSA-2024:1646)
2024-04-05 00:00:00
RHEL 9 : grafana-pcp (RHSA-2024:1502)
2024-03-25 00:00:00
RHEL 9 : grafana (RHSA-2024:1501)
2024-03-25 00:00:00
redhat
redhat
(RHSA-2024:1462) Important: golang security update
2024-03-21 08:05:03
(RHSA-2024:1468) Important: go-toolset-1.19-golang security update
2024-03-21 12:08:38
rocky
rocky
grafana-pcp security update
2024-05-10 14:32:42
go-toolset:rhel8 security update
2024-03-27 04:34:32
grafana-pcp security update
2024-05-10 14:32:42
osv
osv
Important: golang security update
2024-03-21 00:00:00
Important: grafana-pcp security and bug fix update
2024-04-02 00:00:00
Important: grafana-pcp security and bug fix update
2024-04-05 14:56:07
oraclelinux
oraclelinux
grafana-pcp security and bug fix update
2024-04-03 00:00:00
go-toolset:ol8 security update
2024-03-22 00:00:00
grafana-pcp security update
2024-03-26 00:00:00
veracode
veracode
Memory Leak
2024-03-28 05:55:40
vulnrichment
vulnrichment
almalinux
almalinux
Important: grafana-pcp security update
2024-03-25 00:00:00
Important: grafana security and bug fix update
2024-04-02 00:00:00
Important: go-toolset:rhel8 security update
2024-03-21 00:00:00
cve
cve
CVE-2024-1394
2024-03-21 13:00:08
redhatcve
redhatcve
CVE-2024-1394
2024-03-20 18:01:24
cvelist
cvelist
github
github
Memory leaks in code encrypting and verifying RSA payloads
2024-03-20 18:10:36
nvd
nvd
CVE-2024-1394
2024-03-21 13:00:08
ibm
ibm
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.5 High
AI Score
Confidence
Low
0.0005 Low
EPSS
Percentile
17.2%
Related for ALSA-2024:1462