MGASA-2016-0207

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2016-0207.html

Import Source

https://advisories.mageia.org/MGASA-2016-0207.json

JSON Data

https://api.test.osv.dev/v1/vulns/MGASA-2016-0207

Related

CVE-2016-3959

Published

2016-05-23T22:00:58Z

Modified

2016-05-23T21:53:53Z

Summary

Updated golang package fixes CVE-2016-3959

Details

Updated golang packages fix security vulnerability:

Go has an infinite loop in several big integer routines that makes Go programs vulnerable to remote denial of service attacks. Programs using HTTPS client authentication or the Go ssh server libraries are both exposed to this vulnerability (CVE-2016-3959).

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:5 / golang

Package

Name: golang
Purl: pkg:rpm/mageia/golang?distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.6.2-7.mga5

Ecosystem specific

{
    "section": "core"
}