AVG-859

Package go, go-pie
Status Fixed
Severity Medium
Type private key recovery
Affected 2:1.11.4-1
Fixed 2:1.11.5-1
Current 2:1.12.8-1 [community]
Ticket None
Created Thu Jan 24 15:06:41 2019
Issue Severity Remote Type Description
CVE-2019-6486 Medium Yes Private key recovery
Go before versions 1.10.8 and 1.11.5 has a vulnerability in the crypto/elliptic implementations of the P-521 and P-384 elliptic curves. A remote attacker...
Date Advisory Package Description
24 Jan 2019 ASA-201901-11 go private key recovery
24 Jan 2019 ASA-201901-10 go-pie private key recovery