18 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-41722
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A path traversal vulnerability exists in filepath.Clean on Windows. On Windows, the filepath.Clean function could transform an invalid path such as a/../c:/b in...
Azure Linux 3.0 Security Update: golang / msft-golang (CVE-2022-41722)
The version of golang / msft-golang installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-41722 advisory. - A path traversal vulnerability exists in filepath.Clean on Windows. On Windows, the...
CVE-2022-41722 affecting package golang 1.22.7-5
CVE-2022-41722 affecting package golang 1.22.7-5. This CVE either no longer is or was never applicable...
CVE-2022-41722 affecting package golang for versions less than 1.22.7-2
CVE-2022-41722 affecting package golang for versions less than 1.22.7-2. An upgraded version of the package is available that resolves this issue...
CBL Mariner 2.0 Security Update: golang / msft-golang (CVE-2022-41722)
The version of golang / msft-golang installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-41722 advisory. - A path traversal vulnerability exists in filepath.Clean on Windows. On Windows, the...
RHEL 8 / 9 : OpenShift Container Platform 4.13.2 (RHSA-2023:3366)
The remote Redhat Enterprise Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:3366 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or...
CVE-2022-41722 affecting package golang for versions less than 1.21.6-1
CVE-2022-41722 affecting package golang for versions less than 1.21.6-1. A patched version of the package is available...
CVE-2022-41722 affecting package golang for versions less than 1.21.6-1
CVE-2022-41722 affecting package golang for versions less than 1.21.6-1. A patched version of the package is available...
Important: golang
Issue Overview: An attacker can cause excessive memory growth in a Go server accepting HTTP/2 requests. HTTP/2 server connections contain a cache of HTTP header keys sent by the client. While the total number of entries in this cache is capped, an attacker sending very large keys can cause the...
Important: Red Hat Security Advisory: OpenShift Container Platform 4.13.2 packages and security update
Red Hat OpenShift Container Platform release 4.13.2 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.13. Red Hat Product Security has rated this update as having a...
CVE-2022-41722 affecting package msft-golang for versions less than 1.19.8-1
CVE-2022-41722 affecting package msft-golang for versions less than 1.19.8-1. An upgraded version of the package is available that resolves this issue...
SUSE: Security Advisory (SUSE-SU-2023:0733-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
AZL-13738 CVE-2022-41722 affecting package msft-golang for versions less than 1.19.8-1
A path traversal vulnerability exists in filepath.Clean on Windows. On Windows, the filepath.Clean function could transform an invalid path such as "a/../c:/b" into the valid path "c:\b". This transformation of a relative if invalid path into an absolute path could enable a directory traversal...
DEBIAN-CVE-2022-41722
A path traversal vulnerability exists in filepath.Clean on Windows. On Windows, the filepath.Clean function could transform an invalid path such as "a/../c:/b" into the valid path "c:\b". This transformation of a relative if invalid path into an absolute path could enable a directory traversal...
CVE-2022-41722 vulnerabilities
Vulnerabilities for packages: falco...
CVE-2022-41722
A path traversal vulnerability exists in filepath.Clean on Windows. On Windows, the filepath.Clean function could transform an invalid path such as "a/../c:/b" into the valid path "c:\b". This transformation of a relative if invalid path into an absolute path could enable a directory traversal...
CVE-2022-41722
CVE-2022-41722 describes a path traversal in the Go standard library function filepath.Clean on Windows, where an invalid path like "a/../c:/b" can be transformed into a valid path "c:\b" and potentially enable directory traversal. After fix, Go converts it to the relative but invalid path ".\c:\...
Security fix for the ALT Linux 10 package golang version 1.19.6-alt1
1.19.6-alt1 built Feb. 22, 2023 Alexey Shabalin in task 315371 Feb. 16, 2023 Alexey Shabalin - New version 1.19.6 Fixes: CVE-2022-41725, CVE-2022-41724, CVE-2022-41723, CVE-2022-41722...