Oval Definition:oval:com.redhat.rhsa:def:20171859
Revision Date:2017-08-01Version:639
Title:RHSA-2017:1859: golang security, bug fix, and enhancement update (Moderate)
Description:The golang packages provide the Go programming language compiler.

  • The following packages have been upgraded to a later upstream version: golang (1.8.3). (BZ#1414500)

    Security Fix(es):

  • A carry propagation flaw was found in the implementation of the P-256 elliptic curve in golang. An attacker could possibly use this flaw to extract private keys when static ECDH was used. (CVE-2017-8932)

    Additional Changes:

    For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.4 Release Notes linked from the References section.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2017-1000098
    CVE-2017-8932
    RHSA-2017:1859
    RHSA-2017:1859-01
    Platform(s):Red Hat Enterprise Linux 7
    Red Hat Enterprise Linux 7 (please do not use for >= RHEL-7.5)
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 7 is installed
  • AND
  • golang is earlier than 0:1.8.3-1.el7
  • AND golang is signed with Red Hat redhatrelease2 key
  • golang-bin is earlier than 0:1.8.3-1.el7
  • AND golang-bin is signed with Red Hat redhatrelease2 key
  • golang-docs is earlier than 0:1.8.3-1.el7
  • AND golang-docs is signed with Red Hat redhatrelease2 key
  • golang-misc is earlier than 0:1.8.3-1.el7
  • AND golang-misc is signed with Red Hat redhatrelease2 key
  • golang-src is earlier than 0:1.8.3-1.el7
  • AND golang-src is signed with Red Hat redhatrelease2 key
  • golang-tests is earlier than 0:1.8.3-1.el7
  • AND golang-tests is signed with Red Hat redhatrelease2 key
    • Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 7 Client is installed
  • OR Red Hat Enterprise Linux 7 Server is installed
  • OR Red Hat Enterprise Linux 7 Workstation is installed
  • OR Red Hat Enterprise Linux 7 ComputeNode is installed
  • AND Package Information
  • golang-bin is earlier than 0:1.8.3-1.el7
  • AND golang-bin is signed with Red Hat redhatrelease2 key
  • OR
  • golang is earlier than 0:1.8.3-1.el7
  • AND golang is signed with Red Hat redhatrelease2 key
  • OR
  • golang-docs is earlier than 0:1.8.3-1.el7
  • AND golang-docs is signed with Red Hat redhatrelease2 key
  • OR
  • golang-misc is earlier than 0:1.8.3-1.el7
  • AND golang-misc is signed with Red Hat redhatrelease2 key
  • OR
  • golang-src is earlier than 0:1.8.3-1.el7
  • AND golang-src is signed with Red Hat redhatrelease2 key
  • OR
  • golang-tests is earlier than 0:1.8.3-1.el7
  • AND golang-tests is signed with Red Hat redhatrelease2 key
    • BACK