---

ASA-202011-16 - log back

ASA-202011-16 edited at 26 Nov 2020 19:36:26

ASA-202011-16 edited at 19 Nov 2020 22:46:04

Impact

- A remote attacker might be able to crash the program via a crafted input. In addition a remote attacker might be able to execute arbitrary code when go get is run on a malicious package, or untrusted code is built via any other command. + A local attacker might be able to crash the program via a crafted input. In addition a remote attacker might be able to execute arbitrary code when go get is run on a malicious package, or untrusted code is built via any other command.

ASA-202011-16 edited at 17 Nov 2020 18:44:20
Impact	+ A remote attacker might be able to crash the program via a crafted input. In addition a remote attacker might be able to execute arbitrary code when go get is run on a malicious package, or untrusted code is built via any other command.

ASA-202011-16 created at 17 Nov 2020 18:42:26