Lucene search
OracleLinuxELSA-2024-1149HistoryMar 07, 2024 - 12:00 a.m.
skopeo security update
2024-03-0700:00:00
linux.oracle.com
15
skopeo
golang
denial of service
http
cve-2023-39326
update
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
7.3
Confidence
Low
EPSS
0.001
Percentile
20.4%
[2:1.13.3-4]
- Rebuild with golang 1.20.12:
golang:net/http/internal: Denial of Service (DoS) via Resource Consumption via HTTP requests (CVE-2023-39326)
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 9 | src | skopeo | < 1.13.3-4.el9_3 | skopeo-1.13.3-4.el9_3.src.rpm |
| oracle linux | 9 | aarch64 | skopeo | < 1.13.3-4.el9_3 | skopeo-1.13.3-4.el9_3.aarch64.rpm |
| oracle linux | 9 | aarch64 | skopeo-tests | < 1.13.3-4.el9_3 | skopeo-tests-1.13.3-4.el9_3.aarch64.rpm |
| oracle linux | 9 | src | skopeo | < 1.13.3-4.el9_3 | skopeo-1.13.3-4.el9_3.src.rpm |
| oracle linux | 9 | x86_64 | skopeo | < 1.13.3-4.el9_3 | skopeo-1.13.3-4.el9_3.x86_64.rpm |
| oracle linux | 9 | x86_64 | skopeo-tests | < 1.13.3-4.el9_3 | skopeo-tests-1.13.3-4.el9_3.x86_64.rpm |
Related
osv
osv
CGA-r8r7-99fj-9gjh
2024-06-06 12:29:17
CGA-23mh-fhf7-gfm6
2024-06-06 12:09:01
CGA-j2hc-cpcv-rx7f
2024-06-06 12:27:59
nessus
nessus
EulerOS 2.0 SP9 : golang (EulerOS-SA-2024-1174)
2024-02-08 00:00:00
AlmaLinux 9 : skopeo (ALSA-2024:1149)
2024-03-07 00:00:00
Oracle Linux 7 : conmon (ELSA-2024-12189)
2024-03-01 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2024-1174)
2024-02-09 00:00:00
Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2024-1194)
2024-02-09 00:00:00
Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2024-1335)
2024-03-13 00:00:00
redhat
redhat
(RHSA-2024:0695) Moderate: Logging 5.6.16 - Red Hat OpenShift
2024-02-07 22:47:56
(RHSA-2024:1149) Moderate: skopeo security update
2024-03-05 15:32:30
(RHSA-2024:0728) Moderate: Logging Subsystem 5.8.3 - Red Hat OpenShift
2024-02-08 17:04:55
amazon
amazon
Medium: cni-plugins
2024-05-09 19:16:00
Medium: golist
2024-05-23 22:04:00
cbl_mariner
cbl_mariner
CVE-2023-39326 affecting package golang for versions less than 1.21.6-1
2024-07-13 09:08:52
CVE-2023-39326 affecting package golang for versions less than 1.21.5-1
2024-09-19 09:11:58
CVE-2023-39326 affecting package msft-golang for versions less than 1.21.5-1
2024-09-19 09:11:58
cvelist
cvelist
CVE-2023-39326 Denial of service via chunk extensions in net/http
2023-12-06 16:27:53
ibm
ibm
cve
cve
CVE-2023-39326
2023-12-06 17:15:07
ubuntucve
ubuntucve
CVE-2023-39326
2023-12-06 00:00:00
redhatcve
redhatcve
CVE-2023-39326
2023-12-07 12:35:00
oraclelinux
oraclelinux
conmon security update
2024-03-18 00:00:00
conmon security update
2024-03-01 00:00:00
olcne security update
2024-04-02 00:00:00
cgr
cgr
CVE-2023-39326 vulnerabilities
2024-05-19 03:07:16
alpinelinux
alpinelinux
CVE-2023-39326
2023-12-06 17:15:07
nvd
nvd
CVE-2023-39326
2023-12-06 17:15:07
wolfi
wolfi
CVE-2023-39326 vulnerabilities
2024-09-19 21:18:36
prion
prion
Design/Logic Flaw
2023-12-06 17:15:00
debiancve
debiancve
CVE-2023-39326
2023-12-06 17:15:07
veracode
veracode
Denial Of Service (DoS)
2023-12-12 07:10:29
almalinux
almalinux
Moderate: skopeo security update
2024-03-05 00:00:00
Moderate: buildah security update
2024-04-30 00:00:00
Moderate: golang security update
2024-03-05 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: golang-1.21.6-1.fc39
2024-01-20 03:24:19
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
7.3
Confidence
Low
EPSS
0.001
Percentile
20.4%
Related for ELSA-2024-1149