AVG-1278 log

Package go
Status Fixed
Severity High
Type multiple issues
Affected 2:1.15.4-1
Fixed 2:1.15.5-1
Current 2:1.23.2-1 [extra]
Ticket None
Created Thu Nov 12 22:16:13 2020
Issue Severity Remote Type Description
CVE-2020-28367 High Yes Arbitrary code execution
A flaw was found in go before 1.15.5 where the go command may execute arbitrary code at build time when cgo is in use. This may occur when running go get on...
CVE-2020-28366 High Yes Arbitrary code execution
A flaw was found in go beforer 1.15.5  where the go command may execute arbitrary code at build time when cgo is in use. This may occur when running go get...
CVE-2020-28362 Low No Denial of service
A flaw was found in go before 1.15.5 where a number of math/big.Int methods (Div, Exp, DivMod, Quo, Rem, QuoRem, Mod, ModInverse, ModSqrt, Jacobi, and GCD)...
Date Advisory Package Type
17 Nov 2020 ASA-202011-16 go multiple issues