[ELSA-2024-0887] go-toolset:ol8 security update

Severity Moderate

Affected Packages 8

CVEs 2

delve
[1.20.2-1.0.1]
- Disable DWARF compression which has issues (Alex Burmashev)

[1.20.2-1]
- Rebase to 1.20.2
- Resolves: rhbz#2186495

golang
[1.20.12-1]
- Update to Go 1.20.12
- Fix CVE-2023-39326 CVE-2023-45285

go-toolset
[1.20.12-1]
- Update to Go 1.20.12
- CVE-2023-39326 golang: net/http/internal: Denial of Service (DoS) via Resource Consumption via HTTP request (rhbz 2253330)

Package	Affected Version
pkg:rpm/oraclelinux/golang?distro=oraclelinux-8.9	< 1.20.12-1.module+el8.9.0+90156+2bd6b1a8
pkg:rpm/oraclelinux/golang-tests?distro=oraclelinux-8.9	< 1.20.12-1.module+el8.9.0+90156+2bd6b1a8
pkg:rpm/oraclelinux/golang-src?distro=oraclelinux-8.9	< 1.20.12-1.module+el8.9.0+90156+2bd6b1a8
pkg:rpm/oraclelinux/golang-misc?distro=oraclelinux-8.9	< 1.20.12-1.module+el8.9.0+90156+2bd6b1a8
pkg:rpm/oraclelinux/golang-docs?distro=oraclelinux-8.9	< 1.20.12-1.module+el8.9.0+90156+2bd6b1a8
pkg:rpm/oraclelinux/golang-bin?distro=oraclelinux-8.9	< 1.20.12-1.module+el8.9.0+90156+2bd6b1a8
pkg:rpm/oraclelinux/go-toolset?distro=oraclelinux-8.9	< 1.20.12-1.module+el8.9.0+90156+2bd6b1a8
pkg:rpm/oraclelinux/delve?distro=oraclelinux-8.9	< 1.20.2-1.0.1.module+el8.9.0+90001+52c302fe

ID

ELSA-2024-0887

Severity

moderate

URL

https://linux.oracle.com/errata/ELSA-2024-0887.html

Published

2024-02-22T00:00:00
(7 months ago)

Modified

2024-02-22T00:00:00
(7 months ago)

Rights

Other Advisories

Source	# ID	URL
elsa	ELSA-2024-0887	https://linux.oracle.com/errata/ELSA-2024-0887.html
CVE	CVE-2023-39326	https://linux.oracle.com/cve/CVE-2023-39326.html
CVE	CVE-2023-45285	https://linux.oracle.com/cve/CVE-2023-45285.html

Type	Package URL	Namespace	Name / Product	Version	Distribution / Platform
Affected	pkg:rpm/oraclelinux/golang?distro=oraclelinux-8.9	oraclelinux	golang	< 1.20.12-1.module+el8.9.0+90156+2bd6b1a8	oraclelinux-8.9
Affected	pkg:rpm/oraclelinux/golang-tests?distro=oraclelinux-8.9	oraclelinux	golang-tests	< 1.20.12-1.module+el8.9.0+90156+2bd6b1a8	oraclelinux-8.9
Affected	pkg:rpm/oraclelinux/golang-src?distro=oraclelinux-8.9	oraclelinux	golang-src	< 1.20.12-1.module+el8.9.0+90156+2bd6b1a8	oraclelinux-8.9
Affected	pkg:rpm/oraclelinux/golang-misc?distro=oraclelinux-8.9	oraclelinux	golang-misc	< 1.20.12-1.module+el8.9.0+90156+2bd6b1a8	oraclelinux-8.9
Affected	pkg:rpm/oraclelinux/golang-docs?distro=oraclelinux-8.9	oraclelinux	golang-docs	< 1.20.12-1.module+el8.9.0+90156+2bd6b1a8	oraclelinux-8.9
Affected	pkg:rpm/oraclelinux/golang-bin?distro=oraclelinux-8.9	oraclelinux	golang-bin	< 1.20.12-1.module+el8.9.0+90156+2bd6b1a8	oraclelinux-8.9
Affected	pkg:rpm/oraclelinux/go-toolset?distro=oraclelinux-8.9	oraclelinux	go-toolset	< 1.20.12-1.module+el8.9.0+90156+2bd6b1a8	oraclelinux-8.9
Affected	pkg:rpm/oraclelinux/delve?distro=oraclelinux-8.9	oraclelinux	delve	< 1.20.2-1.0.1.module+el8.9.0+90001+52c302fe	oraclelinux-8.9

# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	Exploits	PoC	Pubblication Date	Modification Date
# CVE	Description	CVSS	EPSS	EPSS Trend (30 days)	Affected Products	Weaknesses	Security Advisories	PoC	Pubblication Date	Modification Date