stable

golang-1.19.9-1.el7

FEDORA-EPEL-2023-efd9bbf67e created by dwd a year ago for Fedora EPEL 7

Security fix for CVE-2023-24538, CVE-2023-24536 , CVE-2023-24537, CVE-2023-24534, CVE-2023-24539, CVE-2023-29400, and CVE-2023-24540

This update has been submitted for testing by dwd.

a year ago

This update's test gating status has been changed to 'ignored'.

a year ago

This update has been pushed to testing.

a year ago

This update has been submitted for stable by bodhi.

a year ago

This update has been pushed to stable.

a year ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
0
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
7 days
Dates
submitted
a year ago
in testing
a year ago
in stable
a year ago
approved
a year ago
BZ#2184481 CVE-2023-24538 golang: html/template: backticks not treated as string delimiters
0
0
BZ#2184482 CVE-2023-24536 golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption
0
0
BZ#2184483 CVE-2023-24534 golang: net/http, net/textproto: denial of service from excessive memory allocation
0
0
BZ#2184484 CVE-2023-24537 golang: go/parser: Infinite loop in parsing
0
0
BZ#2188999 CVE-2023-24538 golang: html/template: backticks not treated as string delimiters [epel-all]
0
0
BZ#2189020 CVE-2023-24536 golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption [epel-all]
0
0
BZ#2189039 CVE-2023-24537 golang: go/parser: Infinite loop in parsing [epel-all]
0
0
BZ#2189059 CVE-2023-24534 golang: net/http, net/textproto: denial of service from excessive memory allocation [epel-all]
0
0
BZ#2196026 CVE-2023-24539 golang: html/template: improper sanitization of CSS values
0
0
BZ#2196027 CVE-2023-24540 golang: html/template: improper handling of JavaScript whitespace
0
0
BZ#2196029 CVE-2023-29400 golang: html/template: improper handling of empty HTML attributes
0
0
BZ#2196470 CVE-2023-24539 golang: html/template: improper sanitization of CSS values [epel-all]
0
0
BZ#2196474 CVE-2023-29400 golang: html/template: improper handling of empty HTML attributes [epel-all]
0
0
BZ#2196629 CVE-2023-24540 golang: html/template: improper handling of JavaScript whitespace [epel-all]
0
0

Automated Test Results