SUSE: 2023:2524-1 important: bci/golang DoS Risk Update

suse

August 5, 2023

The container bci/golang was updated

Summary

Advisory ID: SUSE-SU-2023:3181-1 Released: Thu Aug 3 21:34:12 2023 Summary: Security update for go1.20 Type: security Severity: important

Topics Covered

security advisory security issue DoS important SUSE bci/golang

References

References : 1206346 1213880 CVE-2023-29409

1206346,1213880,CVE-2023-29409

This update for go1.20 fixes the following issues:

- Update to go v1.20.7 (released 2023-08-01) (bsc#1206346)

- CVE-2023-29409: Restrict RSA keys in certificates to less than or equal to 8192 bits to avoid DoSing client/server while validating signatures for extremely large RSA keys. (bsc#1213880)

The following package changes have been done:

- go1.20-1.20.7-150000.1.20.1 updated

Severity

important

Lowest

Low

Medium

High

Critical

Container Advisory ID : SUSE-CU-2023:2524-1

Container Tags : bci/golang:1.20 , bci/golang:1.20-1.8.23 , bci/golang:latest , bci/golang:stable , bci/golang:stable-1.8.23

Container Release : 8.23

Severity : important

Type : security

Topics Covered

security advisory security issue DoS important SUSE bci/golang

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

SUSE: 2023:2524-1 important: bci/golang DoS Risk Update

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

SUSE: 2023:2524-1 important: bci/golang DoS Risk Update

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!