Lucene search
Veracode Vulnerability DatabaseVERACODE:34197HistoryFeb 14, 2022 - 8:28 a.m.
Denial Of Service (DoS)
2022-02-1408:28:54
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
20
0.004 Low
EPSS
Percentile
72.7%
github.com/golang/go is vulnerable to Denial Of Service (DoS). The vulnerability exists due to uncontrolled memory consumption in SetString function which allows an attacker to crash the application by providing a malicious input.
References
github.com/golang/go/issues/50699
groups.google.com/g/golang-announce/c/SUsQn0aSgPQ
groups.google.com/g/golang-announce/c/SUsQn0aSgPQ?pli=1
lists.debian.org/debian-lts-announce/2022/04/msg00017.html
lists.debian.org/debian-lts-announce/2022/04/msg00018.html
security.gentoo.org/glsa/202208-02
security.netapp.com/advisory/ntap-20220225-0006/
www.oracle.com/security-alerts/cpujul2022.html
Related
osv
osv
Uncontrolled memory consumption in math/big
2022-05-23 22:15:42
CVE-2022-23772
2022-02-11 01:15:07
BIT-golang-2022-23772
2024-03-06 11:02:51
cvelist
cvelist
CVE-2022-23772
2022-02-11 00:11:15
cnvd
cnvd
Google Golang memory consumption overflow vulnerability
2022-02-14 00:00:00
ibm
ibm
ubuntucve
ubuntucve
CVE-2022-23772
2022-02-11 00:00:00
nvd
nvd
CVE-2022-23772
2022-02-11 01:15:07
redhatcve
redhatcve
CVE-2022-23772
2022-02-11 13:49:27
alpinelinux
alpinelinux
CVE-2022-23772
2022-02-11 01:15:07
cve
cve
CVE-2022-23772
2022-02-11 01:15:07
prion
prion
Memory corruption
2022-02-11 01:15:00
cbl_mariner
cbl_mariner
CVE-2022-23772 affecting package golang 1.16.12-1
2022-02-25 01:45:48
CVE-2022-23772 affecting package golang for versions less than 1.17.8-1
2022-04-26 19:57:46
debiancve
debiancve
CVE-2022-23772
2022-02-11 01:15:07
nessus
nessus
openSUSE 15 Security Update : go1.16 (openSUSE-SU-2022:0724-1)
2022-03-05 00:00:00
Debian DLA-2986-1 : golang-1.8 - LTS security update
2022-04-28 00:00:00
RHEL 8 : Red Hat OpenShift Data Foundation 4.11.0 (RHSA-2022:6155)
2024-04-28 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-2986-1)
2022-04-29 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:0723-1)
2022-03-05 00:00:00
openSUSE: Security Advisory for go1.17 (openSUSE-SU-2022:0723-1)
2022-03-05 00:00:00
debian
debian
[SECURITY] [DLA 2986-1] golang-1.8 security update
2022-04-28 09:57:43
[SECURITY] [DLA 2985-1] golang-1.7 security update
2022-04-28 09:57:28
redhat
redhat
(RHSA-2022:4860) Moderate: Release of OpenShift Serverless Client kn 1.22.1
2022-06-01 09:10:05
(RHSA-2022:6155) Moderate: Red Hat OpenShift Data Foundation 4.11.0 security, enhancement & bugfix update
2022-08-24 13:31:56
(RHSA-2022:4863) Moderate: Release of OpenShift Serverless Version 1.22.1
2022-06-01 12:07:22
amazon
amazon
Medium: golang
2023-02-15 00:23:00
Important: golang
2022-07-06 03:11:00
Important: golang
2022-04-25 03:47:00
suse
suse
Security update for go1.16 (important)
2022-03-04 00:00:00
Security update for go1.17 (important)
2022-03-04 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package golang version 1.17.7-alt1
2022-02-11 00:00:00
freebsd
freebsd
go -- multiple vulnerabilities
2022-02-10 00:00:00
mageia
mageia
Updated golang packages fix security vulnerability
2022-03-08 02:10:22
photon
photon
Critical Photon OS Security Update - PHSA-2022-0159
2022-03-02 00:00:00
Critical Photon OS Security Update - PHSA-2022-0364
2022-02-22 00:00:00
Critical Photon OS Security Update - PHSA-2022-4.0-0159
2022-03-07 00:00:00
oraclelinux
oraclelinux
go-toolset:ol8addon security update
2022-06-08 00:00:00
go-toolset:ol8 security and bug fix update
2022-05-17 00:00:00
almalinux
almalinux
Moderate: go-toolset:rhel8 security and bug fix update
2022-05-10 06:29:31
rocky
rocky
go-toolset:rhel8 security and bug fix update
2022-05-10 06:29:31
gentoo
gentoo
Go: Multiple Vulnerabilities
2022-08-04 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - July 2022
2022-07-19 00:00:00