Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 521
Alerts This Week
Warning Icon 1 521

SUSE Linux 15-SP3: 2021:2788-1 Moderate Go1.16 Panic Error

suse
Calendar Grey August 20, 2021
Dist Suse Esm H88
SUSE Security Patch resolves flaws in go1.16, correcting severe problems, such as crash errors and permission issues.
An update that solves one vulnerability and has one errata is now available

Summary

This update for go1.16 fixes the following issues: Update to go1.16.7: - go#47473 net/http: panic due to racy read of persistConn after handler panic (CVE-2021-36221 bsc#1189162) - go#47348 cmd/go: "go list -f '{{.Stale}}'" stack overflow with cyclic imports - go#47332 time: Timer reset broken under heavy use since go1.16 timer optimizations added - go#47289 cmd/link: build error with cgo in Windows, redefinition of go.map.zero - go#47015 cmd/go: go mod vendor: open C:\Users\LICENSE: Access is denied. - go#46928 cmd/compile: register conflict between external linker and duffzero on arm64 - go#46858 runtime: ppc64x binaries randomly segfault on linux 5.13rc6 - go#46551 cmd/go: unhelpful error message when running "go install" on a replaced-but-not-required package Patch Instructions:

References

#1182345 #1189162

Cross- CVE-2021-36221

Affected Products:

SUSE Linux Enterprise Module for Development Tools 15-SP3

SUSE Linux Enterprise Module for Development Tools 15-SP2

https://www.suse.com/security/cve/CVE-2021-36221.html

https://bugzilla.suse.com/1182345

https://bugzilla.suse.com/1189162

Announcement ID: SUSE-SU-2021:2788-1
Rating: moderate

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.