rpm package
almalinux/butane
pkg:rpm/almalinux/butane
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-27664 | — | < 0.16.0-1.el9 | 0.16.0-1.el9 | Sep 6, 2022 | In net/http in Go before 1.18.6 and 1.19.x before 1.19.1, attackers can cause a denial of service because an HTTP/2 connection can hang during closing if shutdown were preempted by a fatal error. | ||
| CVE-2022-32189 | — | < 0.16.0-1.el9 | 0.16.0-1.el9 | Aug 9, 2022 | A too-short encoded message can cause a panic in Float.GobDecode and Rat GobDecode in math/big in Go before 1.17.13 and 1.18.5, potentially allowing a denial of service. |
- CVE-2022-27664Sep 6, 2022affected < 0.16.0-1.el9fixed 0.16.0-1.el9
In net/http in Go before 1.18.6 and 1.19.x before 1.19.1, attackers can cause a denial of service because an HTTP/2 connection can hang during closing if shutdown were preempted by a fatal error.
- CVE-2022-32189Aug 9, 2022affected < 0.16.0-1.el9fixed 0.16.0-1.el9
A too-short encoded message can cause a panic in Float.GobDecode and Rat GobDecode in math/big in Go before 1.17.13 and 1.18.5, potentially allowing a denial of service.