AVG-606 log
| Package | go, go-pie |
| Status | Fixed |
| Severity | High |
| Type | arbitrary code execution |
| Affected | 1.9.3-1 |
| Fixed | 1.9.4-1 |
| Current | 2:1.23.3-1 [extra] |
| Ticket | None |
| Created | Fri Feb 9 09:13:30 2018 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2018-6574 | High | Yes | Arbitrary code execution | Go before 1.8.7, Go 1.9.x before 1.9.4, and Go 1.10 pre-releases before Go 1.10rc2 allow "go get" remote command execution during source code build, by... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 09 Feb 2018 | ASA-201802-3 | go-pie | arbitrary code execution |
| 09 Feb 2018 | ASA-201802-2 | go | arbitrary code execution |