[RHSA-2024:4237] go-toolset security update
Severity
Moderate
Affected Packages
19
CVEs
2
Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang.
Security Fix(es):
golang: archive/zip: Incorrect handling of certain ZIP files (CVE-2024-24789)
golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
- ID
- RHSA-2024:4237
- Severity
- moderate
- URL
- https://access.redhat.com/errata/RHSA-2024:4237
- Published
-
2024-07-02T00:00:00
(2 months ago) - Modified
-
2024-07-02T00:00:00
(2 months ago) - Rights
- Copyright 2024 Red Hat, Inc.
- Other Advisories
-
- ALAS2-2024-2576
- ALAS2-2024-2618
- ALPINE:CVE-2024-24789
- ALPINE:CVE-2024-24790
- ALSA-2024:4212
- ALSA-2024:4237
- ALSA-2024:5258
- ALSA-2024:5291
- ELSA-2024-4212
- ELSA-2024-4237
- ELSA-2024-5258
- ELSA-2024-5291
- FEDORA-2024-15039ba9f9
- FEDORA-2024-35147eb6ad
- FEDORA-2024-c83208238d
- FREEBSD:219AAA1E-2AFF-11EF-AB37-5404A68AD561
- FREEBSD:A5C64F6F-2AF3-11EF-A77E-901B0E9408DC
- FREEBSD:F0BA7008-2BBD-11EF-B4CA-814A3D504243
- GO-2024-2887
- GO-2024-2888
- RHSA-2024:4212
- RHSA-2024:5258
- RHSA-2024:5291
- RLSA-2024:4212
- SUSE-SU-2024:1935-1
- SUSE-SU-2024:1936-1
- SUSE-SU-2024:1969-1
- SUSE-SU-2024:1970-1
- SUSE-SU-2024:3089-1
- USN-6886-1
Source | # ID | Name | URL |
---|---|---|---|
Bugzilla | 2292668 | https://bugzilla.redhat.com/2292668 | |
Bugzilla | 2292787 | https://bugzilla.redhat.com/2292787 | |
RHSA | RHSA-2024:4237 | https://access.redhat.com/errata/RHSA-2024:4237 | |
CVE | CVE-2024-24789 | https://access.redhat.com/security/cve/CVE-2024-24789 | |
CVE | CVE-2024-24790 | https://access.redhat.com/security/cve/CVE-2024-24790 |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/redhat/golang?arch=x86_64&distro=redhat-8.1 | redhat | golang | < 1.21.11-1.module+el8.10.0+21986+2112108a | redhat-8.1 | x86_64 | |
Affected | pkg:rpm/redhat/golang?arch=s390x&distro=redhat-8.1 | redhat | golang | < 1.21.11-1.module+el8.10.0+21986+2112108a | redhat-8.1 | s390x | |
Affected | pkg:rpm/redhat/golang?arch=ppc64le&distro=redhat-8.1 | redhat | golang | < 1.21.11-1.module+el8.10.0+21986+2112108a | redhat-8.1 | ppc64le | |
Affected | pkg:rpm/redhat/golang?arch=aarch64&distro=redhat-8.1 | redhat | golang | < 1.21.11-1.module+el8.10.0+21986+2112108a | redhat-8.1 | aarch64 | |
Affected | pkg:rpm/redhat/golang-tests?distro=redhat-8.1 | redhat | golang-tests | < 1.21.11-1.module+el8.10.0+21986+2112108a | redhat-8.1 | ||
Affected | pkg:rpm/redhat/golang-src?distro=redhat-8.1 | redhat | golang-src | < 1.21.11-1.module+el8.10.0+21986+2112108a | redhat-8.1 | ||
Affected | pkg:rpm/redhat/golang-misc?distro=redhat-8.1 | redhat | golang-misc | < 1.21.11-1.module+el8.10.0+21986+2112108a | redhat-8.1 | ||
Affected | pkg:rpm/redhat/golang-docs?distro=redhat-8.1 | redhat | golang-docs | < 1.21.11-1.module+el8.10.0+21986+2112108a | redhat-8.1 | ||
Affected | pkg:rpm/redhat/golang-bin?arch=x86_64&distro=redhat-8.1 | redhat | golang-bin | < 1.21.11-1.module+el8.10.0+21986+2112108a | redhat-8.1 | x86_64 | |
Affected | pkg:rpm/redhat/golang-bin?arch=s390x&distro=redhat-8.1 | redhat | golang-bin | < 1.21.11-1.module+el8.10.0+21986+2112108a | redhat-8.1 | s390x | |
Affected | pkg:rpm/redhat/golang-bin?arch=ppc64le&distro=redhat-8.1 | redhat | golang-bin | < 1.21.11-1.module+el8.10.0+21986+2112108a | redhat-8.1 | ppc64le | |
Affected | pkg:rpm/redhat/golang-bin?arch=aarch64&distro=redhat-8.1 | redhat | golang-bin | < 1.21.11-1.module+el8.10.0+21986+2112108a | redhat-8.1 | aarch64 | |
Affected | pkg:rpm/redhat/go-toolset?arch=x86_64&distro=redhat-8.1 | redhat | go-toolset | < 1.21.11-1.module+el8.10.0+21986+2112108a | redhat-8.1 | x86_64 | |
Affected | pkg:rpm/redhat/go-toolset?arch=s390x&distro=redhat-8.1 | redhat | go-toolset | < 1.21.11-1.module+el8.10.0+21986+2112108a | redhat-8.1 | s390x | |
Affected | pkg:rpm/redhat/go-toolset?arch=ppc64le&distro=redhat-8.1 | redhat | go-toolset | < 1.21.11-1.module+el8.10.0+21986+2112108a | redhat-8.1 | ppc64le | |
Affected | pkg:rpm/redhat/go-toolset?arch=aarch64&distro=redhat-8.1 | redhat | go-toolset | < 1.21.11-1.module+el8.10.0+21986+2112108a | redhat-8.1 | aarch64 | |
Affected | pkg:rpm/redhat/delve?arch=x86_64&distro=redhat-8.1 | redhat | delve | < 1.21.2-3.module+el8.10.0+21244+5b2d9000 | redhat-8.1 | x86_64 | |
Affected | pkg:rpm/redhat/delve?arch=ppc64le&distro=redhat-8.1 | redhat | delve | < 1.21.2-3.module+el8.10.0+21244+5b2d9000 | redhat-8.1 | ppc64le | |
Affected | pkg:rpm/redhat/delve?arch=aarch64&distro=redhat-8.1 | redhat | delve | < 1.21.2-3.module+el8.10.0+21244+5b2d9000 | redhat-8.1 | aarch64 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |