Calling any of the Parse functions on Go source code which contains //line directives with very large line numbers can cause an infinite loop due to integer overflow.

CPENameOperatorVersion
goge1.20.0
golt1.20.3
golt1.19.8

Name	Operator	Version
go	ge	1.20.0
go	lt	1.20.3
go	lt	1.19.8

References

go.dev/cl/482078

go.dev/issue/59180

groups.google.com/g/golang-announce/c/Xdv6JL9ENs8

pkg.go.dev/vuln/GO-2023-1702

security.gentoo.org/glsa/202311-09

cve 1

nvd 1

veracode 2

cbl_mariner 3

nessus 51

ibm 27

debiancve 1

cgr 1

amazon 4

osv 9

alpinelinux 1

redhatcve 1

ubuntucve 1

cvelist 1

wolfi 1

openvas 12

mageia 1

freebsd 1

redhat 33

altlinux 1

ubuntu 3

almalinux 4

oraclelinux 4

photon 7

gentoo 1

cve

CVE-2023-24537

2023-04-06 16:15:07

nvd

CVE-2023-24537

2023-04-06 16:15:07

veracode

Denial Of Service (DoS)

2023-04-11 23:40:29

Denial Of Service (DoS)

2023-04-18 11:58:35

cbl_mariner

CVE-2023-24537 affecting package golang for versions less than 1.20.7-1

2024-07-05 21:08:33

CVE-2023-24537 affecting package msft-golang for versions less than 1.20.11-1

2024-07-05 21:08:40

CVE-2023-24537 affecting package golang for versions less than 1.20.7-1

2024-07-05 21:08:40

nessus

Amazon Linux 2 : golang (ALAS-2023-2024)

2023-05-02 00:00:00

EulerOS 2.0 SP9 : golang (EulerOS-SA-2023-2334)

2023-07-09 00:00:00

EulerOS 2.0 SP9 : golang (EulerOS-SA-2023-2314)

2023-07-09 00:00:00

ibm

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in Golang Go (CVE-2023-24537).

2023-07-27 17:25:46

Security Bulletin: IBM App Connect Enterprise Certified Container operands and operator may be vulnerable to denial of service due to [CVE-2023-24537]

2023-06-28 15:14:17

Security Bulletin: Vulnerability in Golang Go affects IBM Cloud Pak System [CVE-2023-24538]

2023-10-10 16:39:33

debiancve

CVE-2023-24537

2023-04-06 16:15:07

cgr

CVE-2023-24537 vulnerabilities

2024-05-19 03:07:16

amazon

Medium: golang

2023-04-27 18:36:00

Important: golang

2023-04-13 19:28:00

Important: golang

2023-04-13 19:01:00

osv

Infinite loop in parsing in go/scanner

2023-04-05 21:05:07

BIT-golang-2023-24537

2024-03-06 10:56:42

CVE-2023-24537

2023-04-06 16:15:07

alpinelinux

CVE-2023-24537

2023-04-06 16:15:07

redhatcve

CVE-2023-24537

2023-04-04 20:43:24

ubuntucve

CVE-2023-24537

2023-04-06 00:00:00

cvelist

CVE-2023-24537 Infinite loop in parsing in go/scanner

2023-04-06 15:50:49

wolfi

CVE-2023-24537 vulnerabilities

2024-07-05 21:08:40

openvas

Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2023-2334)

2023-07-10 00:00:00

Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2023-2314)

2023-07-10 00:00:00

SUSE: Security Advisory (SUSE-SU-2023:1792-1)

2023-04-07 00:00:00

mageia

Updated golang packages fix security vulnerability

2023-04-15 22:03:44

freebsd

go -- multiple vulnerabilities

2023-04-04 00:00:00

redhat

(RHSA-2023:4986) Moderate: Red Hat OpenShift Distributed Tracing 2.9.0 security update

2023-09-06 07:54:47

(RHSA-2023:3536) Important: OpenShift Container Platform 4.13.3 packages and security update

2023-06-13 13:18:37

(RHSA-2023:3323) Important: go-toolset-1.19 and go-toolset-1.19-golang security update

2023-05-25 12:17:40

altlinux

Security fix for the ALT Linux 10 package golang version 1.19.8-alt1

2023-04-10 00:00:00

ubuntu

Go vulnerabilities

2023-06-06 00:00:00

Go vulnerabilities

2024-01-09 00:00:00

Go vulnerabilities

2023-04-25 00:00:00

almalinux

Moderate: skopeo security update

2023-11-07 00:00:00

Moderate: podman security, bug fix, and enhancement update

2023-11-07 00:00:00

Moderate: container-tools:4.0 security and bug fix update

2023-11-14 00:00:00

oraclelinux

skopeo security update

2023-11-11 00:00:00

podman security, bug fix, and enhancement update

2023-11-11 00:00:00

container-tools:4.0 security and bug fix update

2023-11-18 00:00:00

photon

Critical Photon OS Security Update - PHSA-2023-5.0-0037

2023-06-23 00:00:00

Critical Photon OS Security Update - PHSA-2023-4.0-0425

2023-07-12 00:00:00

Critical Photon OS Security Update - PHSA-2023-5.0-0043

2023-07-04 00:00:00

gentoo

Go: Multiple Vulnerabilities

2023-11-25 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

8.6 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.5%

JSON

Related for PRION:CVE-2023-24537