Lucene search
K

62 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.8 views

MiracleLinux 8 : container-tools:rhel8 (AXSA:2023-7318:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-7318:02 advisory. go-yaml: Improve heuristics preventing CPU/memory abuse by parsing malicious or large YAML documents CVE-2022-3064 golang: html/template: improper...

9.8CVSS7.2AI score0.04561EPSS
Exploits3References18
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2023-24537

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Calling any of the Parse functions on Go source code which contains //line directives with very large line numbers can cause an infinite loop due to integer...

7.5CVSS6.9AI score0.01412EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/11/19 12:0 a.m.17 views

Oracle Linux 9 : skopeo (ELSA-2024-9098)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-9098 advisory. - rebuild for following CVEs: CVE-2022-41724 CVE-2022-41725 CVE-2023-24537 CVE-2023-24538 CVE-2023-24534 CVE-2023-24536 CVE-2022-41723 CVE-2023-24539...

9.8CVSS6.9AI score0.04561EPSS
Exploits0References5
CBLMariner
CBLMariner
added 2024/11/13 9:13 a.m.34 views

CVE-2023-24537 affecting package golang for versions less than 1.20.7-1

CVE-2023-24537 affecting package golang for versions less than 1.20.7-1. A patched version of the package is available...

7.5CVSS7.8AI score0.01412EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.33 views

RHEL 8 / 9 : OpenShift Container Platform 4.13.3 (RHSA-2023:3536)

The remote Redhat Enterprise Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:3536 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or...

9.8CVSS7.2AI score0.02281EPSS
Exploits1References9
CBLMariner
CBLMariner
added 2024/03/19 5:21 p.m.33 views

CVE-2023-24537 affecting package golang for versions less than 1.20.7-1

CVE-2023-24537 affecting package golang for versions less than 1.20.7-1. A patched version of the package is available...

7.5CVSS7.8AI score0.01412EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/02/25 3:0 a.m.25 views

CVE-2023-24537 affecting package golang for versions less than 1.21.6-1

CVE-2023-24537 affecting package golang for versions less than 1.21.6-1. A patched version of the package is available...

7.5CVSS9.2AI score0.01412EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/02/25 3:0 a.m.46 views

CVE-2023-24537 affecting package golang for versions less than 1.21.6-1

CVE-2023-24537 affecting package golang for versions less than 1.21.6-1. A patched version of the package is available...

7.5CVSS7.8AI score0.01412EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/01/24 12:0 a.m.34 views

RHCOS 4 / 9 : OpenShift Container Platform 4.13.3 (RHSA-2023:3536)

The remote Red Hat Enterprise Linux CoreOS 4 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:3536 advisory. - golang: net/http, net/textproto: denial of service from excessive memory allocation CVE-2023-24534 - golang: net/http,...

9.8CVSS6.8AI score0.02281EPSS
Exploits1References9
CBLMariner
CBLMariner
added 2023/12/05 4:40 a.m.27 views

CVE-2023-24537 affecting package msft-golang for versions less than 1.20.11-1

CVE-2023-24537 affecting package msft-golang for versions less than 1.20.11-1. A patched version of the package is available...

7.5CVSS7.3AI score0.01412EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2023/11/14 4:3 p.m.121 views

Moderate: Red Hat Security Advisory: container-tools:rhel8 security and bug fix update

An update for the container-tools:rhel8 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

9.8CVSS6.5AI score0.04561EPSS
Exploits3References45
AlmaLinux
AlmaLinux
added 2023/11/14 12:0 a.m.60 views

Moderate: container-tools:4.0 security and bug fix update

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: go-yaml: Improve heuristics preventing CPU/memory abuse by parsing malicious or large YAML documents CVE-2022-3064 golang: html/template: improper handling of JavaScri...

9.8CVSS6.7AI score0.04561EPSS
Exploits2References34
AlmaLinux
AlmaLinux
added 2023/11/14 12:0 a.m.60 views

Moderate: container-tools:rhel8 security and bug fix update

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: go-yaml: Improve heuristics preventing CPU/memory abuse by parsing malicious or large YAML documents CVE-2022-3064 golang: html/template: improper handling of JavaScri...

9.8CVSS6.7AI score0.04561EPSS
Exploits3References36
RedHat Linux
RedHat Linux
added 2023/11/07 8:33 a.m.55 views

Moderate: Red Hat Security Advisory: skopeo security update

An update for skopeo is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

9.8CVSS6.6AI score0.04561EPSS
Exploits0References13
AlmaLinux
AlmaLinux
added 2023/11/07 12:0 a.m.76 views

Moderate: podman security, bug fix, and enhancement update

The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes. Security Fixes: golang: html/template: improper handling of JavaScript whitespace CVE-2023-24540 net/http...

9.8CVSS6.9AI score0.04561EPSS
Exploits1References28
OSV
OSV
added 2023/11/07 12:0 a.m.50 views

ALSA-2023:6474 Moderate: podman security, bug fix, and enhancement update

The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes. Security Fixes: golang: html/template: improper handling of JavaScript whitespace CVE-2023-24540 net/http...

9.8CVSS8.2AI score0.04561EPSS
Exploits1References28
RedHat Linux
RedHat Linux
added 2023/10/20 2:54 p.m.68 views

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 16.2.5 (collectd-libpod-stats) security update

An update for collectd-libpod-stats is now available for Red Hat OpenStack Platform 16.2.5 Train. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...

9.8CVSS7.1AI score0.99999EPSS
Exploits19References11
IBM Security Bulletins
IBM Security Bulletins
added 2023/10/10 4:39 p.m.47 views

Security Bulletin: Vulnerability in Golang Go affects IBM Cloud Pak System [CVE-2023-24538]

Summary Golang Go code execution vulnerability affects Cloud Pak System. Cloud Pak System has addressed this vulnerability CVE-2023-24538. In addition it includes CVE-2023-24537. Vulnerability Details CVEID:CVE-2023-24538 DESCRIPTION: Golang Go could allow a remote attacker to execute arbitrary...

9.8CVSS9.2AI score0.02281EPSS
Exploits0Affected Software1
Amazon
Amazon
added 2023/10/03 12:0 a.m.42 views

Important: golang

Issue Overview: An attacker can cause excessive memory growth in a Go server accepting HTTP/2 requests. HTTP/2 server connections contain a cache of HTTP header keys sent by the client. While the total number of entries in this cache is capped, an attacker sending very large keys can cause the...

9.8CVSS8.5AI score0.05623EPSS
Exploits0
OSV
OSV
added 2023/09/22 11:5 a.m.4 views

OESA-2023-1662 skopeo security update

A command line utility that performs various operations on container images and image repositories Security Fixes: Calling any of the Parse functions on Go source code which contains //line directives with very large line numbers can cause an infinite loop due to integer overflow.CVE-2023-24537...

7.5CVSS7.3AI score0.01412EPSS
Exploits0References2
Rows per page
Query Builder