Download
| Alert*
oval:org.secpod.oval:def:19500317
html/template: improper handling of empty HTML attributes.Templates containing actions in unquoted HTML attributes executed with empty input could result in output that would have unexpected results when parsed due to HTML normalization rules. This may allow injection of arbitrary attributes into t ... oval:org.secpod.oval:def:1506690 golang [1.19.10-1.0.1] - New Go version 1.19.10 [CVE-2023-29402] [CVE-2023-29403] [CVE-2023-29404] [CVE-2023-29405] go-toolset [1.19.10-1.0.1] - New Go version 1.19.10 [CVE-2023-29402] [CVE-2023-29403] [CVE-2023-29404] [CVE-2023-29405] oval:org.secpod.oval:def:2600280 Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. oval:org.secpod.oval:def:5800175 Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. The golang packages provide the Go programming language compiler. Security Fix: * golang: cmd/go: go command may generate unexpected code at build time when using cgo * golang: cmd/go: go comma ... oval:org.secpod.oval:def:125922 The Go Programming Language. oval:org.secpod.oval:def:125988 The Go Programming Language. oval:org.secpod.oval:def:1701429 The go command may generate unexpected code at build time when using cgo. This may result in unexpected behavior when running a go program which uses cgo. This may occur when running an untrusted module which contains directories with newline characters in their names. Modules which are retrieved us ... oval:org.secpod.oval:def:507828 Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. Security Fix: * golang: cmd/go: go command may generate unexpected code at build time when using cgo * golang: cmd/go: go command may execute arbitrary code at build time when using cgo * gola ... oval:org.secpod.oval:def:1601738 The go command may generate unexpected code at build time when using cgo. This may result in unexpected behavior when running a go program which uses cgo. This may occur when running an untrusted module which contains directories with newline characters in their names. Modules which are retrieved us ... oval:org.secpod.oval:def:2501118 Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. oval:org.secpod.oval:def:507829 Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. The golang packages provide the Go programming language compiler. Security Fix: * golang: cmd/go: go command may generate unexpected code at build time when using cgo * golang: cmd/go: go comma ... oval:org.secpod.oval:def:1506745 delve [1.9.1-1.0.1] - Disable DWARF compression which has issues [1.9.1-1] - Rebase to 1.9.1 - Related: rhbz#2131026 golang [1.19.10-1.0.1] - New Go version 1.19.10 [CVE-2023-29402] [CVE-2023-29403] [CVE-2023-29404] [CVE-2023-29405] go-toolset [1.19.10-1.0.1] - Update for Go 1.19.10 [CVE-2023-29402 ... oval:org.secpod.oval:def:1701718 The ScalarMult and ScalarBaseMult methods of the P256 Curve may return an incorrect result if called with some specific unreduced scalars . This does not impact usages of crypto/ecdsa or crypto/ecdh. HTTP and MIME header parsing could allocate large amounts of memory, even when parsing small inputs. ... oval:org.secpod.oval:def:2108107 Oracle Solaris 11 - ( CVE-2023-29402 ) |