The vulnerability of the golang package in the Debian GNU/Linux operating system, allowing a hacker to execute arbitrary code

🗓️ 14 Mar 2024 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

Debian GNU/Linux golang vulnerability from incorrect code generation enables remote execution.

Reporter	Title	Published	Views	Family All 379
IBM Security Bulletins	Security Bulletin: IBM Cloud Pak for Data Scheduling is vulnerable to multiple ansible-operator and opm vulnerabilities	20 Feb 202419:29	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in GoLang Go and Kubernetes affect IBM watsonx.data	18 Sep 202416:17	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in Golang Go could affect IBM CICS TX Standard [CVE-2023-24538]	18 May 202309:03	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Golang Go might affect IBM Spectrum Copy Data Management ( CVE-2023-24536, CVE-2023-24537, CVE-2023-24538)	16 Jun 202319:20	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Observability with Instana for Self-Hosted Standard Edition is affected by multiple Vulnerabilities	16 Oct 202408:10	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Event Streams is affected by multiple Golang Go vulnerabilities	25 Jul 202306:06	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in Golang Go could affect IBM CICS TX Advanced [CVE-2023-24538]	18 May 202309:08	–	ibm
IBM Security Bulletins	Security Bulletin: Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to multiple vulnerabilities in Go	25 May 202316:21	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Golang Go affect IBM watsonx.data	18 Sep 202416:33	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Python, OpenSSH, Golang Go, Minio and Redis may affect IBM Spectrum Protect Plus Container backup and restore for Kubernetes and OpenShift	26 Mar 202503:50	–	ibm

Vulners

Node

red_hat red_hat_storageMatch3

red_hat red_hat_amq_brokerMatch7

red_hat red_hat_openshift_dataMatch4

red_hat red_hat_openshift_container_platformMatch4

red_hat red_hat_openstack_platformMatch16.2

novell suse_manager_retail_branch_serverMatch4.3

novell suse_manager_proxyMatch4.3

novell suse_manager_serverMatch4.3

novell suse_enterprise_storageMatch7.1

red_hat red_hat_openstack_platformMatch17.0

red_hat red_hat_ceph_storageMatch5

red_hat red_hat_openshift_virtualizationMatch4

red_hat red_hat_openshift_container_platformMatch4.13

red_hat migration_toolkit_for_applicationsMatch6.2

red_hat red_hat_advanced_cluster_securityMatch3

red_hat red_hat_ansible_automation_platformMatch2.3

red_hat red_hat_service_interconnectMatch1

go goRange<1.19.8

go goRange1.20.0–1.20.3

red_hat openshift_container_platformMatch4.13

red_hat openshiftMatch1.10

red_hat migration_toolkit_for_containersMatch1.7

red_hat red_hat_openshift_distributed_tracingMatch2

red_hat red_hat_enterprise_linuxMatch8

novell opensuse_leapMatch15.4

red_hat red_hat_enterprise_linuxMatch9

novell suse_liberty_linuxMatch9

Source	Link
go-review	www.go-review.googlesource.com/c/go/+/482079
github	www.github.com/golang/go/issues/59234
groups	www.groups.google.com/g/golang-announce/c/Xdv6JL9ENs8
pkg	www.pkg.go.dev/vuln/GO-2023-1703
security	www.security.gentoo.org/glsa/202311-09
vuldb	www.vuldb.com/
security-tracker	www.security-tracker.debian.org/tracker/CVE-2023-24538
suse	www.suse.com/security/cve/CVE-2023-24538.html
ubuntu	www.ubuntu.com/security/CVE-2023-24538
repo	www.repo.red-soft.ru/redos/7.3c/x86_64/updates/

05 Dec 2024 00:00Current

7High risk

Vulners AI Score7

CVSS 39.8

CVSS 210

EPSS0.00759