CVE-2021-41771 - log back

CVE-2021-41771 edited at 05 Nov 2021 10:32:45
Severity
- Unknown
+ Low
Remote
- Unknown
+ Remote
Type
- Unknown
+ Denial of service
Description
+ A security issue has been found in go before version 1.17.3. Malformed binaries parsed using Open or OpenFat can cause a panic when calling ImportedSymbols, due to an out-of-bounds slice operation.
References
+ https://groups.google.com/g/golang-announce/c/0fM21h43arc
+ https://github.com/golang/go/issues/48990
+ https://github.com/golang/go/commit/4a842985bf3f71d93a2b1340d9d6685bebc12b6b
Notes
CVE-2021-41771 created at 05 Nov 2021 10:30:54