AVG-1278 log
| Package | go |
| Status | Fixed |
| Severity | High |
| Type | multiple issues |
| Affected | 2:1.15.4-1 |
| Fixed | 2:1.15.5-1 |
| Current | 2:1.23.3-1 [extra] |
| Ticket | None |
| Created | Thu Nov 12 22:16:13 2020 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2020-28367 | High | Yes | Arbitrary code execution | A flaw was found in go before 1.15.5 where the go command may execute arbitrary code at build time when cgo is in use. This may occur when running go get on... |
| CVE-2020-28366 | High | Yes | Arbitrary code execution | A flaw was found in go beforer 1.15.5 where the go command may execute arbitrary code at build time when cgo is in use. This may occur when running go get... |
| CVE-2020-28362 | Low | No | Denial of service | A flaw was found in go before 1.15.5 where a number of math/big.Int methods (Div, Exp, DivMod, Quo, Rem, QuoRem, Mod, ModInverse, ModSqrt, Jacobi, and GCD)... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 17 Nov 2020 | ASA-202011-16 | go | multiple issues |