Oval Definition:oval:org.opensuse.security:def:20186574
Revision Date:2022-06-30Version:1
Title:CVE-2018-6574
Description:

Go before 1.8.7, Go 1.9.x before 1.9.4, and Go 1.10 pre-releases before Go 1.10rc2 allow "go get" remote command execution during source code build, by leveraging the gcc or clang plugin feature, because -fplugin= and -plugin= arguments were not blocked.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2018-6574
openSUSE-SU-2018:0588-1
openSUSE-SU-2018:0589-1
openSUSE-SU-2018:0628-1
openSUSE-SU-2018:0629-1
Mitre CVE-2018-6574
SUSE CVE-2018-6574
openSUSE-SU-2018:0588-1
openSUSE-SU-2018:0589-1
openSUSE-SU-2018:0628-1
openSUSE-SU-2018:0629-1
Platform(s):openSUSE Leap 42.3
openSUSE Tumbleweed
SUSE Linux Enterprise High Performance Computing 12
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP5
SUSE Linux Enterprise Server for SAP Applications 12
SUSE Linux Enterprise Server for SAP Applications 12 SP3
SUSE Linux Enterprise Server for SAP Applications 12 SP4
SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE Package Hub for SUSE Linux Enterprise 12
Product(s):
Definition Synopsis
  • openSUSE Leap 42.3 is installed
  • AND Package Information
  • go-1.9.4-33 is installed
  • AND go is signed with openSUSE key
  • OR
  • go-doc-1.9.4-33 is installed
  • AND go-doc is signed with openSUSE key
  • OR
  • go-race-1.9.4-33 is installed
  • AND go-race is signed with openSUSE key
  • OR
  • go1.8-1.8.7-5 is installed
  • AND go1.8 is signed with openSUSE key
  • OR
  • go1.8-doc-1.8.7-5 is installed
  • AND go1.8-doc is signed with openSUSE key
  • OR
  • go1.8-race-1.8.7-5 is installed
  • AND go1.8-race is signed with openSUSE key
  • OR
  • go1.9-1.9.4-5 is installed
  • AND go1.9 is signed with openSUSE key
  • OR
  • go1.9-doc-1.9.4-5 is installed
  • AND go1.9-doc is signed with openSUSE key
  • OR
  • go1.9-race-1.9.4-5 is installed
  • AND go1.9-race is signed with openSUSE key
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 is installed
  • AND Package Information
  • go-1.9.4-15 is installed
  • OR go-doc-1.9.4-15 is installed
  • OR go-race-1.9.4-15 is installed
  • OR go1.8-1.8.7-5 is installed
  • OR go1.8-doc-1.8.7-5 is installed
  • OR go1.8-race-1.8.7-5 is installed
  • OR go1.9-1.9.4-5 is installed
  • OR go1.9-doc-1.9.4-5 is installed
  • OR go1.9-race-1.9.4-5 is installed
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • go-1.17-1.1 is installed
  • OR go-doc-1.17-1.1 is installed
  • OR go-race-1.17-1.1 is installed
  • OR go1.10-1.10.8-8.2 is installed
  • OR go1.10-doc-1.10.8-8.2 is installed
  • OR go1.10-race-1.10.8-8.2 is installed
  • OR go1.11-1.11.13-10.5 is installed
  • OR go1.11-doc-1.11.13-10.5 is installed
  • OR go1.11-race-1.11.13-10.5 is installed
  • OR go1.12-1.12.17-4.8 is installed
  • OR go1.12-doc-1.12.17-4.8 is installed
  • OR go1.12-race-1.12.17-4.8 is installed
  • OR go1.9-1.9.7-11.2 is installed
  • OR go1.9-doc-1.9.7-11.2 is installed
  • OR go1.9-race-1.9.7-11.2 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 is installed
  • AND Package Information
  • go-1.9.4-15.1 is installed
  • OR go-doc-1.9.4-15.1 is installed
  • OR go-race-1.9.4-15.1 is installed
  • OR go1.8-1.8.7-5.1 is installed
  • OR go1.8-doc-1.8.7-5.1 is installed
  • OR go1.8-race-1.8.7-5.1 is installed
  • OR go1.9-1.9.4-5.1 is installed
  • OR go1.9-doc-1.9.4-5.1 is installed
  • OR go1.9-race-1.9.4-5.1 is installed
    • BACK