rpm package
suse/google-osconfig-agent&distro=SUSE Linux Enterprise Module for Public Cloud 15 SP2
pkg:rpm/suse/google-osconfig-agent&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP2
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-23806 | — | < 20230222.00-150000.1.27.1 | 20230222.00-150000.1.27.1 | Feb 11, 2022 | Curve.IsOnCurve in crypto/elliptic in Go before 1.16.14 and 1.17.x before 1.17.7 can incorrectly return true in situations with a big.Int value that is not a valid field element. | ||
| CVE-2021-38297 | — | < 20230222.00-150000.1.27.1 | 20230222.00-150000.1.27.1 | Oct 18, 2021 | Go before 1.16.9 and 1.17.x before 1.17.2 has a Buffer Overflow via large arguments in a function invocation from a WASM module, when GOARCH=wasm GOOS=js is used. |
- CVE-2022-23806Feb 11, 2022affected < 20230222.00-150000.1.27.1fixed 20230222.00-150000.1.27.1
Curve.IsOnCurve in crypto/elliptic in Go before 1.16.14 and 1.17.x before 1.17.7 can incorrectly return true in situations with a big.Int value that is not a valid field element.
- CVE-2021-38297Oct 18, 2021affected < 20230222.00-150000.1.27.1fixed 20230222.00-150000.1.27.1
Go before 1.16.9 and 1.17.x before 1.17.2 has a Buffer Overflow via large arguments in a function invocation from a WASM module, when GOARCH=wasm GOOS=js is used.