Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
openSUSE:Step:15
patchinfo.28295
_patchinfo
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File _patchinfo of Package patchinfo.28295
<patchinfo incident="28295"> <issue tracker="bnc" id="1208272">VUL-0: TRACKERBUG: CVE-2022-41725: go1.19,go1.20: net/http, mime/multipart: denial of service from excessive resource consumption</issue> <issue tracker="bnc" id="1208271">VUL-0: TRACKERBUG: CVE-2022-41724: go1.19,go1.20: crypto/tls: large handshake records may cause panics</issue> <issue tracker="bnc" id="1208491">CVE-L3: PTF request for go1.{18,19} for CVE-2022-4172{3-5} [ref:_00D1igLOd._5005qM0AP4:ref]</issue> <issue tracker="bnc" id="1208270">VUL-0: TRACKERBUG: CVE-2022-41723: go1.19,go1.20: net/http: avoid quadratic complexity in HPACK decoding</issue> <issue tracker="cve" id="2022-41723"/> <issue tracker="cve" id="2022-41724"/> <issue tracker="cve" id="2022-41725"/> <packager>jfkw</packager> <rating>important</rating> <category>security</category> <summary>Security update for go1.18</summary> <description>This update for go1.18 fixes the following issues: - CVE-2022-41723: Fixed a quadratic complexity in HPACK decoding in net/http (bsc#1208270). - CVE-2022-41724: Fixed a denial of service from excessive resource consumption in net/http and mime/multipart (bsc#1208271). - CVE-2022-41725: Fixed a panic with large handshake records in crypto/tls (bsc#1208272). The following non-security bug was fixed: - Fixed PTF ref:_00D1igLOd._5005qM0AP4:ref SG#65262 (bsc#1208491). </description> </patchinfo>
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor