1. Home
  2. Security Advisories
  3. Fedora
  4. FEDORA-2022-e46e6e8317

[FEDORA-2022-e46e6e8317] Fedora 35: golang

Severity High
Affected Packages 1
CVEs 2
Info Packages References Vulnerabilities

Contains backports that fix the following CVEs: - CVE-2022-24675 -
CVE-2022-28327

Package Affected Version
pkg:rpm/fedora/golang?distro=fedora-35 < 1.16.15.2.fc35
ID
FEDORA-2022-e46e6e8317
Severity
high
Severity from
CVE-2022-24675
URL
https://bodhi.fedoraproject.org/updates/FEDORA-2022-e46e6e8317
Published
2022-07-01T01:17:14
(2 years ago)
Modified
2022-07-01T01:17:14
(2 years ago)
Rights
Copyright 2022 Red Hat, Inc.
Other Advisories
Source # ID Name URL
Bugzilla 2080125 Bug #2080125 - CVE-2022-24675 golang: encoding/pem: fix stack overflow in Decode [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2080125
Bugzilla 2079826 Bug #2079826 - CVE-2022-28327 golang: crypto/elliptic: panic caused by oversized scalar [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2079826
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/fedora/golang?distro=fedora-35 fedora golang < 1.16.15.2.fc35 fedora-35
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date