We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
encoding/gob & math/big: decoding big.Float and big.Rat can panic
Decoding big.Float and big.Rat types can panic if the encoded message is too short.
Module: std Package: math/big Versions: - Fixed: 1.17.13 - Introduced: 1.18.0 Fixed: 1.18.5 Symbols: - Float.GobDecode - Rat.GobDecode
Yes
CVE-2022-32189
catenacyber
CWE-400 Uncontrolled Resource Consumption
https://go.dev/cl/417774
https://go.googlesource.com/go/+/055113ef364337607e3e72ed7d48df67fde6fc66
No response
The text was updated successfully, but these errors were encountered:
issue: golang/go#53871
Sorry, something went wrong.
Change https://go.dev/cl/420657 mentions this issue: x/vulndb: add reports/GO-2022-0537.yaml for CVE-2022-32189
x/vulndb: add reports/GO-2022-0537.yaml for CVE-2022-32189
5473dc7
Updates #537 Change-Id: I25c9b6f4b53e2a1148bad01b13f73fa3cded3478 Reviewed-on: https://go-review.googlesource.com/c/vulndb/+/420657 Reviewed-by: Damien Neil <dneil@google.com>
requested CVE record
tatianab
No branches or pull requests
Description
encoding/gob & math/big: decoding big.Float and big.Rat can panic
Decoding big.Float and big.Rat types can panic if the encoded message is too short.
Affected Modules, Packages, Versions and Symbols
Does this vulnerability already have an associated CVE ID?
Yes
CVE ID
CVE-2022-32189
Credit
catenacyber
CWE ID
CWE-400 Uncontrolled Resource Consumption
Pull Request
https://go.dev/cl/417774
Commit
https://go.googlesource.com/go/+/055113ef364337607e3e72ed7d48df67fde6fc66
References
Additional information
No response
The text was updated successfully, but these errors were encountered: