ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2020.0173
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2020-0173)
Resumen:	The remote host is missing an update for the 'golang' package(s) announced via the MGASA-2020-0173 advisory.
Descripción:	Summary: The remote host is missing an update for the 'golang' package(s) announced via the MGASA-2020-0173 advisory. Vulnerability Insight: Updated golang packages fix security vulnerability: An integer overflow vulnerability was found in the Go crypto/x509 and golang.org/x/crypto/cryptobyte libraries on 32-bit architectures. A remote attacker could exploit this by supplying a crafted x.509 certificate, or other ASN.1 structure, as either a client or server to crash vulnerable Go applications (CVE-2020-7919). Affected Software/OS: 'golang' package(s) on Mageia 7. Solution: Please install the updated package(s). CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2020-7919 https://groups.google.com/forum/#!topic/golang-announce/Hsw4mHYc470 https://security.netapp.com/advisory/ntap-20200327-0001/ Debian Security Information: DSA-4848 (Google Search) https://www.debian.org/security/2021/dsa-4848 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S43VLYRURELDWX4D5RFOYBNFGO6CGBBC/ https://groups.google.com/forum/#!forum/golang-announce https://groups.google.com/forum/#!topic/golang-announce/-sdUB4VEQkA https://www.oracle.com/security-alerts/cpuApr2021.html
Copyright	Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.