Lucene search

Denial Of Service (DoS)

🗓️ 04 Aug 2023 03:08:29Reported by Veracode Vulnerability DatabaseType

veracode🔗 sca.analysiscenter.veracode.com👁 35 Views

github.com/golang/go vulnerability in handshake_client.go can lead to DoS due to lack of max RSA key size, fixed to 8192 bits

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 199
Tenable Nessus	openSUSE 15 Security Update : grafana (SUSE-SU-2023:3886-1)	29 Sep 202300:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : nerdctl (ALAS2023-2023-309)	24 Aug 202300:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2023-29409	5 Mar 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2 : containerd (ALASDOCKER-2023-027)	23 Aug 202300:00	–	nessus
Tenable Nessus	Amazon Linux 2 : runc (ALASDOCKER-2023-026)	23 Aug 202300:00	–	nessus
Tenable Nessus	SUSE SLED15 / SLES15 / openSUSE 15 Security Update : Golang Prometheus (SUSE-SU-2023:3888-1)	29 Sep 202300:00	–	nessus
Tenable Nessus	RHEL 9 : OpenShift Container Platform 4.14.10 (RHSA-2024:0292)	25 Jan 202400:00	–	nessus
Tenable Nessus	Amazon Linux 2 : containerd (ALASECS-2023-008)	18 Oct 202300:00	–	nessus
Tenable Nessus	Amazon Linux 2 : nerdctl (ALAS-2023-2210)	23 Aug 202300:00	–	nessus
Tenable Nessus	Amazon Linux 2 : containerd (ALASNITRO-ENCLAVES-2023-028)	23 Aug 202300:00	–	nessus

Vulners

Node

golang goMatch1.17.6-r0go

AND

golang goMatch1.19.1-r0go

AND

golang goMatch1.17.2-r0go

AND

golang goMatch1.17.7-r0go

AND

golang goMatch1.17.1-r0go

AND

golang goMatch1.18.2-r0go

AND

golang goMatch1.20.4-r0go

AND

golang goMatch1.18.4-r2go

AND

golang goMatch1.20.5-r2go

AND

golang goMatch1.13.10-r0go

AND

golang goMatch1.20.2-r0go

AND

golang goMatch1.17.4-r0go

AND

golang goMatch1.16.3-r0go

AND

golang goMatch1.18.3-r1go

AND

golang goMatch1.17.3-r0go

AND

golang goMatch1.18.1-r1go

AND

golang goMatch1.18.3-r0go

AND

golang goMatch1.16.5-r0go

AND

golang goMatch1.19.3-r0go

AND

golang goMatch1.20.1-r0go

AND

golang goMatch1.19.1-r1go

AND

golang goMatch1.19.4-r0go

AND

golang goMatch1.18-r1go

AND

golang goMatch1.16.4-r0go

AND

golang goMatch1.18.5-r0go

AND

golang goMatch1.20.6-r0go

AND

golang goMatch1.17.8-r0go

AND

golang goMatch1.20-r0go

AND

golang goMatch1.19.5-r0go

AND

golang goMatch1.13.8-r0go

AND

golang goMatch1.18-r0go

AND

golang goMatch1.14.3-r0go

AND

golang goMatch1.20.3-r0go

AND

golang goMatch1.19-r0go

AND

golang goMatch1.16-r0go

AND

golang goMatch1.20.2-r1go

AND

golang goMatch1.16.2-r0go

AND

golang goMatch1.19.2-r0go

AND

golang goMatch1.16.7-r0go

AND

alpinelinux alpine_linuxMatchedge

golang goMatch1.20.3-r0go

AND

golang goMatch1.20.4-r0go

AND

golang goMatch1.20.5-r0go

AND

alpinelinux alpine_linuxMatch3.18

golang github.com/golang/goRangego1.21rc1–go1.21rc3go

golang github.com/golang/goRangego1.20rc1–go1.20.6go

golang github.com/golang/goRangerelease.r56–go1.19.11go

Source	Link
go-review	www.go-review.googlesource.com/c/go/+/515257
pkg	www.pkg.go.dev/vuln/GO-2023-1987
github	www.github.com/golang/go/issues/61460
github	www.github.com/golang/go/commit/2300f7ef07718f6be4d8aa8486c7de99836e233f
github	www.github.com/golang/go/commit/659f2a22076713bd2500adc82e026b6a746d8ba1
github	www.github.com/golang/go/commit/a51957fb0b20bb6c91d0415efca222cc9ecdb770
github	www.github.com/advisories/GHSA-xc82-5m89-g4jv
groups	www.groups.google.com/g/golang-announce/c/X0b6CsSAaYI/m/Efv5DbZ9AwAJ
go	www.go.dev/cl/515257
go	www.go.dev/issue/61460

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

04 Aug 2023 03:29Current

6.7Medium risk

Vulners AI Score6.7

CVSS35.3

EPSS0.00082

SSVC