[FREEBSD:7F8D5435-125A-11ED-9A69-10C37B4AC2EA] go -- decoding big.Float and big.Rat can panic

Severity High

Affected Packages 2

CVEs 1

The Go project reports:

  encoding/gob & math/big: decoding big.Float and
    big.Rat can panic
  Decoding big.Float and big.Rat types can panic if the
    encoded message is too short.

Package	Affected Version
pkg:freebsd/go118	< 1.18.5
pkg:freebsd/go117	< 1.17.13

ID

FREEBSD:7F8D5435-125A-11ED-9A69-10C37B4AC2EA

Severity

high

Severity from

CVE-2022-32189

URL

http://vuxml.freebsd.org/freebsd/7f8d5435-125a-11ed-9a69-10c37b4ac2ea.html

Published

2022-07-14T00:00:00
(2 years ago)

Modified

2022-08-02T00:00:00
(2 years ago)

Rights

FreeBSD VuXML Security Team

Other Advisories

Source	# ID	Name	URL
FreeBSD VuXML			https://groups.google.com/g/golang-announce/c/YqYYG87xB10

Type	Package URL	Namespace	Name / Product	Version	Distribution / Platform	Arch	Patch / Fix
Affected	pkg:freebsd/go118		go118	< 1.18.5
Affected	pkg:freebsd/go117		go117	< 1.17.13

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date