Oval Definition:oval:org.opensuse.security:def:69686
Revision Date:2021-06-30Version:1
Title:Security update for go1.15 (Important)
Description:

This update for go1.15 fixes the following issues:

Update to 1.15.13. Includes these security fixes

- CVE-2021-33195: net: Lookup functions may return invalid host names (bsc#1187443). - CVE-2021-33196: archive/zip: malformed archive may cause panic or memory exhaustion (bsc#1186622). - CVE-2021-33197: net/http/httputil: ReverseProxy forwards Connection headers if first one is empty (bsc#1187444) - CVE-2021-33198: math/big: (*Rat).SetString with '1.770p02041010010011001001' crashes with 'makeslice: len out of range' (bsc#1187445).
Family:unixClass:patch
Status:Reference(s):1175132
1176579
1186622
1187443
1187444
1187445
CVE-2013-2003
CVE-2017-16612
CVE-2020-1472
CVE-2021-33195
CVE-2021-33196
CVE-2021-33197
CVE-2021-33198
SUSE-SU-2020:2722-1
SUSE-SU-2021:2214-1
Platform(s):SUSE Enterprise Storage 6
SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Server 15 SP1-BCL
Product(s):
Definition Synopsis
  • SUSE Enterprise Storage 6 is installed
  • AND Package Information
  • samba-4.9.5+git.373.26895a83dbf-3.44 is installed
  • OR samba-ceph-4.9.5+git.373.26895a83dbf-3.44 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • libXcursor-devel-1.1.15-1 is installed
  • OR libXcursor1-1.1.15-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15 SP1-BCL is installed
  • AND Package Information
  • go1.15-1.15.13-1.33.1 is installed
  • OR go1.15-doc-1.15.13-1.33.1 is installed
  • OR go1.15-race-1.15.13-1.33.1 is installed
    • BACK