Lucene search
GoogleOSV:CVE-2022-30634HistoryJul 15, 2022 - 8:15 p.m.
CVE-2022-30634
2022-07-1520:15:08
Google
osv.dev
11
infinite loop
read
crypto/rand
go 1.17.11
go 1.18.3
windows
buffer overflow
security vulnerability
cve-2022-30634
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
6.7
Confidence
Low
EPSS
0.002
Percentile
51.6%
Infinite loop in Read in crypto/rand before Go 1.17.11 and Go 1.18.3 on Windows allows attacker to cause an indefinite hang by passing a buffer larger than 1 << 32 - 1 bytes.
Related
veracode
veracode
Denial Of Service (DoS)
2022-07-18 06:48:12
cvelist
cvelist
CVE-2022-30634 Indefinite hang with large buffers on Windows in crypto/rand
2022-07-15 19:36:19
alpinelinux
alpinelinux
CVE-2022-30634
2022-07-15 20:15:08
prion
prion
Spoofing
2022-07-15 20:15:00
osv
osv
BIT-golang-2022-30634
2024-03-06 10:59:32
Indefinite hang with large buffers on Windows in crypto/rand
2022-06-09 01:43:37
go1.18-1.18.3-1.1 on GA media
2024-06-15 00:00:00
ubuntucve
ubuntucve
CVE-2022-30634
2022-07-15 00:00:00
debiancve
debiancve
CVE-2022-30634
2022-07-15 20:15:08
nvd
nvd
CVE-2022-30634
2022-07-15 20:15:08
cve
cve
CVE-2022-30634
2022-07-15 20:15:08
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2022:2004-1)
2022-06-08 00:00:00
openSUSE: Security Advisory for go1.17 (SUSE-SU-2022:2004-1)
2022-06-08 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:2005-1)
2022-06-08 00:00:00
suse
suse
Security update for go1.17 (important)
2022-06-07 00:00:00
Security update for go1.18 (important)
2022-06-07 00:00:00
nessus
nessus
SUSE SLED15 / SLES15 Security Update : go1.17 (SUSE-SU-2022:2004-1)
2022-06-08 00:00:00
SUSE SLED15 / SLES15 Security Update : go1.18 (SUSE-SU-2022:2005-1)
2022-06-08 00:00:00
Oracle Linux 8 : ol8addon (ELSA-2022-17957)
2022-07-12 00:00:00
ibm
ibm
oraclelinux
oraclelinux
ol8addon security update
2022-07-12 00:00:00
go-toolset:ol8addon security update
2022-07-12 00:00:00
freebsd
freebsd
go -- multiple vulnerabilities
2022-06-01 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package golang version 1.17.11-alt1.p10
2022-06-14 00:00:00
Security fix for the ALT Linux 10 package golang version 1.18.3-alt1
2022-06-12 00:00:00
amazon
amazon
Important: golang
2023-04-13 19:01:00
Important: golang
2023-04-13 19:28:00
photon
photon
Critical Photon OS Security Update - PHSA-2023-5.0-0046
2023-07-09 00:00:00
Critical Photon OS Security Update - PHSA-2023-3.0-0611
2023-07-12 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0419
2023-07-03 00:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
6.7
Confidence
Low
EPSS
0.002
Percentile
51.6%
Related for OSV:CVE-2022-30634