Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2024-34158HistorySep 06, 2024 - 9:15 p.m.
CVE-2024-34158
2024-09-0621:15:12
Debian Security Bug Tracker
security-tracker.debian.org
1
parse function
stack exhaustion
// +build
build tag line
unix
stack overflow
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
6.6
Confidence
Low
EPSS
0
Percentile
16.3%
Calling Parse on a “// +build” build tag line with deeply nested expressions can cause a panic due to stack exhaustion.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 11 | all | golang-1.15 | <= 1.15.15-1~deb11u4 | golang-1.15_1.15.15-1~deb11u4_all.deb |
| Debian | 12 | all | golang-1.19 | <= 1.19.8-2 | golang-1.19_1.19.8-2_all.deb |
| Debian | 999 | all | golang-1.22 | < 1.22.7-1 | golang-1.22_1.22.7-1_all.deb |
| Debian | 13 | all | golang-1.22 | < 1.22.7-1 | golang-1.22_1.22.7-1_all.deb |
| Debian | 999 | all | golang-1.23 | < 1.23.1-1 | golang-1.23_1.23.1-1_all.deb |
| Debian | 13 | all | golang-1.23 | < 1.23.1-1 | golang-1.23_1.23.1-1_all.deb |
Related
osv
osv
CGA-63w9-cv7c-732g
2024-09-13 08:07:22
CGA-cfwc-pmgj-g6cr
2024-09-13 09:22:38
CGA-8qcg-r2cw-6pfg
2024-09-11 15:05:02
alpinelinux
alpinelinux
CVE-2024-34158
2024-09-06 21:15:12
nvd
nvd
CVE-2024-34158
2024-09-06 21:15:12
cve
cve
CVE-2024-34158
2024-09-06 21:15:12
redhatcve
redhatcve
CVE-2024-34158
2024-09-06 23:42:26
wolfi
wolfi
CVE-2024-34158 vulnerabilities
2024-09-19 21:18:36
vulnrichment
vulnrichment
CVE-2024-34158 Stack exhaustion in Parse in go/build/constraint
2024-09-06 20:42:42
cvelist
cvelist
CVE-2024-34158 Stack exhaustion in Parse in go/build/constraint
2024-09-06 20:42:42
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
6.6
Confidence
Low
EPSS
0
Percentile
16.3%
Related for DEBIANCVE:CVE-2024-34158