Explore top 10 tips to secure your open-source projects now. Read More
×
On 64-bit platforms, an extremely deeply nested expression can cause
regexp.Compile to cause goroutine stack exhaustion, forcing the program to
exit. Note this applies to very large expressions, on the order of 2MB.
(CVE-2022-24921)
- https://bugs.mageia.org/show_bug.cgi?id=30217
- https://github.com/golang/go/issues/51112
- https://go.dev/doc/devel/release
- https://groups.google.com/g/golang-announce/c/RP1hfrBYVuk
- https://www.cve.org/CVERecord?id=CVE-2022-24921
- 8/core/golang-1.17.8-1.mga8
Get the latest Linux and open source security news straight to your inbox.