Fluid Attacks Database

Description

On Unix platforms, the Go runtime does not behave differently when a binary is run with the setuid/setgid bits. This can be dangerous in certain cases, such as when dumping memory state, or assuming the status of standard i/o file descriptors. If a setuid/setgid binary is executed with standard I/O file descriptors closed, opening any files can result in unexpected content being read or written with elevated privileges. Similarly, if a setuid/setgid program is terminated, either via panic or signal, it may leak the contents of its registers.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 11	golang-1.15	=1.15.15-1 \|\| =1.15.15-1~deb11u1 \|\| =1.15.15-1~deb11u2 \|\| =1.15.15-1~deb11u3 \|\| =1.15.15-1~deb11u4 \|\| =1.15.15-2 \|\| =1.15.15-3 \|\| =1.15.15-4 \|\| =1.15.15-5 \|\| =1.15.9-6	-
debian 12	golang-1.19	=1.19.10-1 \|\| =1.19.10-2 \|\| =1.19.11-1 \|\| =1.19.12-1 \|\| =1.19.12-2 \|\| =1.19.12-2~bpo11+1 \|\| =1.19.12-2~bpo12+1 \|\| =1.19.13-1 \|\| =1.19.13-1~bpo11+1 \|\| =1.19.13-1~bpo12+1 \|\| =1.19.8-2 \|\| =1.19.9-1	-
go	stdlib	>=0 <1.19.10	1.19.10
rpm rhel8	go-toolset	<0:1.19.10-1.module+el8.8.0+19203+782922b7	0:1.19.10-1.module+el8.8.0+19203+782922b7
rpm rhel9	go-toolset	<0:1.19.10-1.el9_2	0:1.19.10-1.el9_2
rpm rhel9	golang	<0:1.19.10-1.el9_2	0:1.19.10-1.el9_2

Aliases

1. CVE-2023-294032. NVD-2023-294033. OSV-DEBIAN-2023-294034. OSV-2023-294035. OSV-GO-2023-18406. GCVE-2023-294037. SECURITY-TRACKER-CVE-2023-29403

References

1. https://go.dev/issue/602722. https://go.dev/cl/5012233. https://groups.google.com/g/golang-announce/c/q5135a9d924/m/j0ZoAJOHAwAJ

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.