12 matches found
Mageia: Security Advisory (MGASA-2016-0207)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated golang package fixes CVE-2016-3959
Updated golang packages fix security vulnerability: Go has an infinite loop in several big integer routines that makes Go programs vulnerable to remote denial of service attacks. Programs using HTTPS client authentication or the Go ssh server libraries are both exposed to this vulnerability...
CVE-2016-3959
The Verify function in crypto/dsa/dsa.go in Go before 1.5.4 and 1.6.x before 1.6.1 does not properly check parameters passed to the big integer library, which might allow remote attackers to cause a denial of service infinite loop via a crafted public key to a program that uses HTTPS client...
AZL-79052 CVE-2016-3959 affecting package golang 1.25.7-1
The Verify function in crypto/dsa/dsa.go in Go before 1.5.4 and 1.6.x before 1.6.1 does not properly check parameters passed to the big integer library, which might allow remote attackers to cause a denial of service infinite loop via a crafted public key to a program that uses HTTPS client...
BELL-CVE-2016-3959 CVE-2016-3959 does not affect BellSoft software
Bulletin has no description...
CVE-2016-3959
CVE-2016-3959 affects Go before 1.5.4 and 1.6.x before 1.6.1. The Verify function in crypto/dsa/dsa.go does not properly validate parameters passed to the big integer library, potentially allowing a remote attacker to cause a denial of service (infinite loop) via a crafted public key in applicati...
openSUSE Security Update : go (openSUSE-2016-606)
This go update to version 1.6 fixes the following issues : Security issues fixed : - CVE-2016-3959: Infinite loop in several big integer routines boo974232 - CVE-2015-8618: Carry propagation in Int.Exp Montgomery code in math/big library boo960151 Bugs fixed : - Update to version 1.6 : - On Linux...
Fedora 22 : golang-1.5.4-1.fc22 (2016-59c5e405e3)
Security fix for CVE-2016-3959 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
Fedora 23 : golang-1.5.4-1.fc23 (2016-2fcfc7670f)
Security fix for CVE-2016-3959 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
Fedora Update for golang FEDORA-2016-2
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 24 : golang-1.6.1-1.fc24 (2016-2940ad5550)
Security fix for CVE-2016-3959 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
Medium: golang
Issue Overview: An infinite loop in several big integer routines was discovered that makes Go programs vulnerable to remote denial of service attacks. Programs using HTTPS client authentication or the Go ssh server libraries are both exposed to this vulnerability. Affected Packages: golang Issue...