Lucene search
Veracode Vulnerability DatabaseVERACODE:34514HistoryMar 06, 2022 - 8:27 p.m.
Denial Of Service (DoS)
2022-03-0620:27:23
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
0.002 Low
EPSS
Percentile
56.1%
Go is vulnerable to denial of service. The vulnerability exists due to a stack exhaustion via a deeply nested expression.
References
cert-portal.siemens.com/productcert/pdf/ssa-744259.pdf
groups.google.com/g/golang-announce/c/RP1hfrBYVuk
lists.debian.org/debian-lts-announce/2022/04/msg00017.html
lists.debian.org/debian-lts-announce/2022/04/msg00018.html
secdb.alpinelinux.org/edge/community.yaml
security.gentoo.org/glsa/202208-02
security.netapp.com/advisory/ntap-20220325-0010/
Related
freebsd
freebsd
go -- multiple vulnerabilities
2022-02-09 00:00:00
nessus
nessus
SUSE SLED15 / SLES15 Security Update : go1.17 (SUSE-SU-2022:1167-1)
2022-04-13 00:00:00
SUSE SLED15 / SLES15 Security Update : go1.16 (SUSE-SU-2022:1164-1)
2022-04-13 00:00:00
ibm
ibm
cbl_mariner
cbl_mariner
CVE-2022-24921 affecting package golang 1.16.14-1
2022-04-07 06:04:08
CVE-2022-24921 affecting package golang for versions less than 1.17.8-1
2022-04-26 19:57:46
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2022:1167-1)
2022-04-13 00:00:00
Mageia: Security Advisory (MGASA-2022-0126)
2022-04-01 00:00:00
SUSE: Security Advisory (SUSE-SU-2022:1164-1)
2022-04-13 00:00:00
debiancve
debiancve
CVE-2022-24921
2022-03-05 20:15:08
suse
suse
Security update for go1.16 (important)
2022-04-12 00:00:00
Security update for go1.17 (important)
2022-04-12 00:00:00
osv
osv
BIT-golang-2022-24921
2024-03-06 11:02:09
CVE-2022-24921
2022-03-05 20:15:08
Stack exhaustion when compiling deeply nested expressions in regexp
2022-05-23 22:15:47
ubuntucve
ubuntucve
CVE-2022-24921
2022-03-05 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package golang version 1.17.8-alt1
2022-03-04 00:00:00
Security fix for the ALT Linux 10 package golang version 1.16.15-alt1
2022-03-05 00:00:00
alpinelinux
alpinelinux
CVE-2022-24921
2022-03-05 20:15:08
prion
prion
Stack overflow
2022-03-05 20:15:00
nvd
nvd
CVE-2022-24921
2022-03-05 20:15:08
cvelist
cvelist
CVE-2022-24921
2022-03-05 00:00:00
cve
cve
CVE-2022-24921
2022-03-05 20:15:08
mageia
mageia
Updated golang packages fix security vulnerability
2022-03-31 22:55:37
veracode
veracode
Denial Of Service (DoS)
2022-03-07 03:56:10
redhatcve
redhatcve
CVE-2022-24921
2022-03-16 19:17:50
cnvd
cnvd
Google Go memory consumption vulnerability
2022-03-08 00:00:00
oraclelinux
oraclelinux
olcne istio istio security update
2022-05-09 00:00:00
olcne istio istio security update
2022-05-09 00:00:00
go-toolset:ol8addon security update
2022-06-08 00:00:00
debian
debian
[SECURITY] [DLA 2985-1] golang-1.7 security update
2022-04-28 09:57:28
[SECURITY] [DLA 2986-1] golang-1.8 security update
2022-04-28 09:57:43
[SECURITY] [DLA 3395-1] golang-1.11 security update
2023-04-19 21:42:48
photon
photon
Important Photon OS Security Update - PHSA-2022-0457
2022-03-29 00:00:00
Important Photon OS Security Update - PHSA-2022-0194
2022-06-05 00:00:00
Important Photon OS Security Update - PHSA-2022-4.0-0194
2022-06-05 00:00:00
redhat
redhat
rocky
rocky
go-toolset:rhel8 security and bug fix update
2022-06-28 10:54:21
go-toolset and golang security and bug fix update
2022-08-01 15:29:25
ics
ics
Siemens Brownfield Connectivity Gateway
2023-02-16 12:00:00
amazon
amazon
Important: golang
2022-07-06 03:11:00
Important: golang
2022-04-25 03:47:00
Important: golang
2022-07-28 21:55:00
gentoo
gentoo
Go: Multiple Vulnerabilities
2022-08-04 00:00:00