Fluid Attacks Database

Description

A flaw was found in Golang. Processing an incomplete post-handshake message for a QUIC connection caused a panic.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
go	stdlib	>=1.21.0-0 <1.21.1	1.21.1
rpm rhel9	skopeo	<2:1.13.3-3.el9_3	2:1.13.3-3.el9_3
rpm rhel9	toolbox	-	-
rpm rhel8	go-toolset	<0:1.20.10-1.module+el8.9.0+20382+04f7fe80	0:1.20.10-1.module+el8.9.0+20382+04f7fe80
rpm rhel9	git-lfs	<0:3.6.1-1.el9	0:3.6.1-1.el9
rpm rhel9	buildah	<1:1.31.3-2.el9_3	1:1.31.3-2.el9_3
rpm rhel9	butane	-	-
rpm rhel9	conmon	-	-
rpm rhel9	containernetworking-plugins	<1:1.3.0-6.el9_3	1:1.3.0-6.el9_3
rpm rhel8	git-lfs	-	-

1-10 of 20

Aliases

References

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.