vulnerability

Amazon Linux AMI: CVE-2020-16845: Security patch for golang (ALAS-2020-1436)

Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
Published
2020-08-06
Added
2020-10-28
Modified
2025-05-13

Description

Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs.

Solution

amazon-linux-upgrade-golang
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.