Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-24539HistoryMay 11, 2023 - 4:15 p.m.
CVE-2023-24539
2023-05-1116:15:09
Debian Security Bug Tracker
security-tracker.debian.org
29
0.001 Low
EPSS
Percentile
38.0%
Angle brackets (<>) are not considered dangerous characters when inserted into CSS contexts. Templates containing multiple actions separated by a ‘/’ character can result in unexpectedly closing the CSS context and allowing for injection of unexpected HTML, if executed with untrusted input.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 10 | all | golang-1.11 | <= 1.11.6-1+deb10u4 | golang-1.11_1.11.6-1+deb10u4_all.deb |
| Debian | 11 | all | golang-1.15 | <= 1.15.15-1~deb11u4 | golang-1.15_1.15.15-1~deb11u4_all.deb |
| Debian | 12 | all | golang-1.19 | <= 1.19.8-2 | golang-1.19_1.19.8-2_all.deb |
Related
nessus
nessus
Amazon Linux 2 : golang (ALAS-2023-2052)
2023-06-05 00:00:00
Amazon Linux AMI : golang (ALAS-2023-1760)
2023-06-09 00:00:00
EulerOS 2.0 SP9 : golang (EulerOS-SA-2023-2583)
2023-08-08 00:00:00
amazon
amazon
Important: golang
2023-05-25 17:41:00
Important: golang
2023-06-05 16:39:00
ibm
ibm
Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to Go HTML injection vulnerabilitiy [CVE-2023-24539]
2024-01-31 13:45:21
veracode
veracode
Code Injection
2023-05-14 11:44:02
cbl_mariner
cbl_mariner
CVE-2023-24539 affecting package golang for versions less than 1.20.7-1
2024-05-17 09:07:16
CVE-2023-24539 affecting package golang for versions less than 1.20.7-1
2024-05-17 09:07:10
ubuntucve
ubuntucve
CVE-2023-24539
2023-05-11 00:00:00
cvelist
cvelist
CVE-2023-24539 Improper sanitization of CSS values in html/template
2023-05-11 15:29:38
prion
prion
Input validation
2023-05-11 16:15:00
osv
osv
CVE-2023-24539
2023-05-11 16:15:09
BIT-golang-2023-24539
2024-03-06 10:56:20
Improper sanitization of CSS values in html/template
2023-05-05 21:10:20
cgr
cgr
CVE-2023-24539 vulnerabilities
2024-05-17 15:41:37
cve
cve
CVE-2023-24539
2023-05-11 16:15:09
redhatcve
redhatcve
CVE-2023-24539
2023-05-08 09:22:01
alpinelinux
alpinelinux
CVE-2023-24539
2023-05-11 16:15:09
wolfi
wolfi
CVE-2023-24539 vulnerabilities
2024-05-17 16:29:45
mageia
mageia
Updated golang packages fix security vulnerability
2023-05-16 22:17:40
openvas
openvas
Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2023-2613)
2023-08-08 00:00:00
Mageia: Security Advisory (MGASA-2023-0169)
2023-05-17 00:00:00
Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2023-2583)
2023-08-08 00:00:00
redhat
redhat
altlinux
altlinux
Security fix for the ALT Linux 10 package golang version 1.19.9-alt1
2023-05-03 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2023-4.0-0387
2023-05-05 00:00:00
Critical Photon OS Security Update - PHSA-2023-3.0-0575
2023-05-05 00:00:00
Critical Photon OS Security Update - PHSA-2023-5.0-0037
2023-06-23 00:00:00
freebsd
freebsd
go -- multiple vulnerabilities
2023-04-27 00:00:00
ubuntu
ubuntu
Go vulnerabilities
2023-06-06 00:00:00
oraclelinux
oraclelinux
containernetworking-plugins security and bug fix update
2023-11-11 00:00:00
skopeo security update
2023-11-11 00:00:00
buildah security update
2023-11-11 00:00:00
almalinux
almalinux
Moderate: toolbox security and bug fix update
2023-11-07 00:00:00
Moderate: containernetworking-plugins security and bug fix update
2023-11-07 00:00:00
Moderate: buildah security update
2023-11-07 00:00:00
redos
redos
ROS-20240418-06
2024-04-18 00:00:00