Download
| Alert*
oval:org.secpod.oval:def:3300466
SUSE Security Update: Security update for go1.19 oval:org.secpod.oval:def:3300473 SUSE Security Update: Security update for go1.18 oval:org.secpod.oval:def:19500050 2023-05-11: CVE-2022-1996 has changed status to NOT AFFECTED for this package and has been removed from this advisory.A flaw was found in golang. The HTTP/1 client accepted invalid Transfer-Encoding headers indicating "chunked" encoding. This issue could allow request smuggling, but only if combined ... oval:org.secpod.oval:def:19500124 2023-05-11: CVE-2022-1996 has changed status to NOT AFFECTED for this package and has been removed from this advisory.A vulnerability was found in archive/zip of the Go standard library. Applications written in Go can panic or potentially exhaust system memory when parsing malformed ZIP files. A val ... oval:org.secpod.oval:def:2107278 Oracle Solaris 11 - ( CVE-2022-32189 ) oval:org.secpod.oval:def:1701085 Reader.Read does not set a limit on the maximum size of file headers. A maliciously crafted archive could cause Read to allocate unbounded amounts of memory, potentially causing resource exhaustion or panics. After fix, Reader.Read limits the maximum size of header blocks to 1 MiB. No description is ... oval:org.secpod.oval:def:1506228 The advisory is missing the security advisory description. For more information please visit the reference link oval:org.secpod.oval:def:1701123 Reader.Read does not set a limit on the maximum size of file headers. A maliciously crafted archive could cause Read to allocate unbounded amounts of memory, potentially causing resource exhaustion or panics. After fix, Reader.Read limits the maximum size of header blocks to 1 MiB. Programs which co ... oval:org.secpod.oval:def:2108072 Oracle Solaris 11 - ( CVE-2022-41716 ) oval:org.secpod.oval:def:89048917 This update for go1.18-openssl fixes the following issues: * Add subpackage go1.x-libstd compiled shared object libstd.so * Main go1.x package included libstd.so in previous versions * Split libstd.so into subpackage that can be installed standalone * Continues the slimming down of main go1.x packa ... oval:org.secpod.oval:def:1506557 delve [1.9.1-1.0.1] - Bump version of delve from 1.8.3 to 1.9.1 [1.8.3-1.0.1] - Bump version of delve from 1.7.2 to 1.8.3 [1.7.2-1.0.1] - Bump version of delve from 1.6.0 to 1.7.2, enable aarch64 [1.6.0-1.0.1] - Bump upstream version of delve from 1.5.0 to 1.6.0 [1.5.0-2.0.1] - Cherry pick 05508ea98 ... |