CVE-2021-3115

CVE-2021-3115 cmd/go: packages using cgo can cause arbitrary code execution at build time. The go command may execute arbitrary code at build time when cgo is in use on Windows. This may occur when running “go get... https://t.co/W7RinEDGes?amp=1

【脆弱性:緊急】Security Bulletin: Golangにおける脆弱性はIBM Spectrum Protect Plus Container backup and restore for Kubernetes and OpenShiftに影響を及ぼします。 (CVE-2021-3114, CVE-2021-3115)

Google Fixes RCE Vulnerability in Golang Language: Google engineers have eliminated the dangerous vulnerability (CVE-2021-3115) A remote code execution in the language of Go (Golang), affecting Windows user that executes… https://t.co/3Eff4r5jnh?amp=1 https://t.co/L2yu6dda8r?amp=1

【脆弱性:緊急】Security Bulletin: オペレーション・ダッシュボードは、脆弱性 ( CVE-2021-3114 および CVE-2021-3115) に対してぜい弱性を提供します Security Bulletin: Operations Dashboard is vulnerable to Go vulnerabilities (CVE-2021-3114 and CVE-2021-3115)

NEW: CVE-2021-3115 Go before 1.14.14 and 1.15.x before 1.15.7 on Windows is vulnerable to Command Injection and remote code execution when using the "go get" command to fetch modules that make use of cgo (for ... (click for more) Severity: CRITICAL https://t.co/yQbzs6z24T?amp=1

NEW: CVE-2021-3115 Go before 1.14.14 and 1.15.x before 1.15.7 on Windows is vulnerable to Command Injection and remote code execution when using the "go get" command to fetch modules that make use of cgo (for ... (click for more) Severity: CRITICAL https://t.co/yQbzs6z24T?amp=1

Security Bulletin: Vulnerabilities in Golang affect IBM Spectrum Protect Plus Container backup and restore for Kubernetes and OpenShift (CVE-2021-3114, CVE-2021-3115) https://t.co/NnhzOn3Nn2?amp=1 /IBMSupport

threatintelctr

NEW: CVE-2021-3115 Go before 1.14.14 and 1.15.x before 1.15.7 on Windows is vulnerable to Command Injection and remote code execution when using the "go get" command to fetch modules that make use of cgo (for ... (click for more) Severity: HIGH https://t.co/yQbzs6z24T