Google Go is a statically strongly-typed, compiled, concurrently-typed, and garbage collected programming language from the U.S. company Google (Google). A security vulnerability exists in ImportedSymbols, which stems from importing symbols (for Open or OpenFat) in Go’s debug macho and accessing memory locations after the Buffer ends. An attacker could exploit the vulnerability to cause an out-of-bounds slicing situation.

CPENameOperatorVersion
Google Go >=1.17.0，lt1.17.3
Google Golt1.16.10

CPE	Name	Operator	Version
	Google Go >=1.17.0，	lt	1.17.3
	Google Go	lt	1.16.10

nessus 30

openvas 16

redhatcve 1

cbl_mariner 2

veracode 1

prion 1

ubuntucve 1

nvd 1

cve 1

alpinelinux 1

osv 8

debiancve 1

cvelist 1

suse 3

freebsd 1

redhat 4

mageia 1

ibm 10

altlinux 1

fedora 2

photon 5

debian 3

amazon 3

oraclelinux 1

ics 1

rocky 1

almalinux 1

gentoo 1

oracle 1

nessus

EulerOS 2.0 SP9 : golang (EulerOS-SA-2022-1289)

2022-03-02 00:00:00

CBL Mariner 2.0 Security Update: golang (CVE-2021-41771)

2023-03-20 00:00:00

EulerOS 2.0 SP9 : golang (EulerOS-SA-2022-1305)

2022-03-02 00:00:00

openvas

Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2022-1289)

2022-03-02 00:00:00

Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2022-1269)

2022-03-02 00:00:00

Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2022-1464)

2022-04-20 00:00:00

redhatcve

CVE-2021-41771

2021-11-05 18:27:46

cbl_mariner

CVE-2021-41771 affecting package golang for versions less than 1.17.8-1

2022-04-26 19:57:46

CVE-2021-41771 affecting package golang 1.16.9-1

2021-12-17 20:09:37

veracode

Out-of-Bounds Access

2021-11-06 13:18:31

prion

Design/Logic Flaw

2021-11-08 06:15:00

ubuntucve

CVE-2021-41771

2021-11-08 00:00:00

nvd

CVE-2021-41771

2021-11-08 06:15:08

cve

CVE-2021-41771

2021-11-08 06:15:08

alpinelinux

CVE-2021-41771

2021-11-08 06:15:08

osv

CVE-2021-41771

2021-11-08 06:15:00

BIT-golang-2021-41771

2024-03-06 11:03:51

Panic on invalid symbol tables in debug/macho

2022-01-13 03:45:03

debiancve

CVE-2021-41771

2021-11-08 06:15:08

cvelist

CVE-2021-41771

2021-11-08 00:00:00

suse

Security update for go1.16 (moderate)

2021-12-06 00:00:00

Security update for go1.17 (moderate)

2021-12-01 00:00:00

Security update for go1.16 (moderate)

2021-12-01 00:00:00

freebsd

go -- multiple vulnerabilities

2021-11-04 00:00:00

redhat

(RHSA-2022:1745) Low: Release of OpenShift Serverless Client kn 1.22.0

2022-05-09 07:42:21

(RHSA-2022:1819) Moderate: go-toolset:rhel8 security and bug fix update

2022-05-10 06:29:31

(RHSA-2022:1747) Low: Release of OpenShift Serverless Version 1.22.0

2022-05-09 12:15:21

mageia

Updated golang packages fix security vulnerability

2021-12-03 21:45:31

ibm

Security Bulletin: Operations Dashboard is vulnerable to Go vulnerabilities CVE-2021-41771 and CVE-2021-41772

2022-01-13 15:43:13

Security Bulletin: Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to denial of service due to Go (CVE CVE-2021-41771 & CVE-2021-41772)

2022-02-08 13:12:19

Security Bulletin: Security Vulnerabilities affect IBM Cloud Private - Golang (CVE-2021-41772,CVE-2021-41771)

2022-04-22 20:29:00

altlinux

Security fix for the ALT Linux 10 package golang version 1.17.3-alt1

2021-11-04 00:00:00

fedora

[SECURITY] Fedora 35 Update: golang-1.16.11-1.fc35

2021-12-16 01:18:21

[SECURITY] Fedora 34 Update: golang-1.16.11-1.fc34

2021-12-16 01:14:10

photon

Important Photon OS Security Update - PHSA-2021-3.0-0334

2021-11-21 00:00:00

Critical Photon OS Security Update - PHSA-2021-0130

2021-11-29 00:00:00

Critical Photon OS Security Update - PHSA-2021-4.0-0130

2021-11-28 00:00:00

debian

[SECURITY] [DLA 2892-1] golang-1.7 security update

2022-01-21 22:02:47

[SECURITY] [DLA 2891-1] golang-1.8 security update

2022-01-21 22:02:40

[SECURITY] [DLA 3395-1] golang-1.11 security update

2023-04-19 21:42:48

amazon

Important: golang

2022-04-25 15:59:00

Important: golang

2022-07-06 03:11:00

Important: golang

2022-04-25 03:47:00

oraclelinux

go-toolset:ol8 security and bug fix update

2022-05-17 00:00:00

ics

Siemens Brownfield Connectivity Gateway

2023-02-16 12:00:00

rocky

go-toolset:rhel8 security and bug fix update

2022-05-10 06:29:31

almalinux

Moderate: go-toolset:rhel8 security and bug fix update

2022-05-10 06:29:31

gentoo

Go: Multiple Vulnerabilities

2022-08-04 00:00:00

oracle

Oracle Critical Patch Update Advisory - July 2022

2022-07-19 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.004 Low

EPSS

Percentile

74.3%

JSON

Related for CNVD-2021-92964