CVE-2020-28366 log

Severity High
Remote Yes
Type Arbitrary code execution
A flaw was found in go beforer 1.15.5  where the go command may execute arbitrary code at build time when cgo is in use. This may occur when running go get on a malicious package, or any other command that builds untrusted code.
Group Package Affected Fixed Severity Status Ticket
AVG-1278 go 2:1.15.4-1 2:1.15.5-1 High Fixed
Date Advisory Group Package Severity Type
17 Nov 2020 ASA-202011-16 AVG-1278 go High multiple issues