-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
===========================================================================
AUSCERT External Security Bulletin Redistribution
ESB-2020.4063
FreeBSD VuXML: go -- math/big
16 November 2020
===========================================================================
AusCERT Security Bulletin Summary
---------------------------------
Product: go
Publisher: FreeBSD
Operating System: FreeBSD
UNIX variants (UNIX, Linux, OSX)
Impact/Access: Execute Arbitrary Code/Commands -- Existing Account
Denial of Service -- Remote/Unauthenticated
Reduced Security -- Existing Account
Resolution: Patch/Upgrade
CVE Names: CVE-2020-28367 CVE-2020-28366 CVE-2020-28362
Original Bulletin:
https://www.vuxml.org/freebsd/db4b2f27-252a-11eb-865c-00155d646400.html
Comment: This advisory references vulnerabilities in products which run on
platforms other than FreeBSD. It is recommended that administrators
running go check for an updated version of the software for their
operating system.
- --------------------------BEGIN INCLUDED TEXT--------------------
go -- math/big: panic during recursive division of very large numbers; cmd/go:
arbitrary code execution at build time through cgo
Affected packages
go
The post ESB-2020.4063 – [UNIX/Linux][FreeBSD] go: Multiple vulnerabilities appeared first on Malware Devil.
https://malwaredevil.com/2020/11/16/esb-2020-4063-unix-linuxfreebsd-go-multiple-vulnerabilities/?utm_source=rss&utm_medium=rss&utm_campaign=esb-2020-4063-unix-linuxfreebsd-go-multiple-vulnerabilities
No comments:
Post a Comment