vulnerability
Red Hat OpenShift: CVE-2021-33198: may cause a panic or an unrecoverable fatal error if passed inputs with very large exponents
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:N/I:N/A:P) | Aug 2, 2021 | Aug 12, 2021 | Apr 11, 2025 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
Published
Aug 2, 2021
Added
Aug 12, 2021
Modified
Apr 11, 2025
Description
In Go before 1.15.13 and 1.16.x before 1.16.5, there can be a panic for a large exponent to the math/big.Rat SetString or UnmarshalText method.
Solution(s)
linuxrpm-upgrade-atomic-openshift-service-idlerlinuxrpm-upgrade-butanelinuxrpm-upgrade-containernetworking-pluginslinuxrpm-upgrade-cri-olinuxrpm-upgrade-cri-toolslinuxrpm-upgrade-golang-github-prometheus-promulinuxrpm-upgrade-ignitionlinuxrpm-upgrade-openshiftlinuxrpm-upgrade-openshift-clientslinuxrpm-upgrade-openshift4-wincw-windows-machine-config-rhel8-operatorlinuxrpm-upgrade-redhat-release-coreos
References
- CVE-2021-33198
- https://attackerkb.com/topics/CVE-2021-33198
- REDHAT-RHSA-2021:2983
- REDHAT-RHSA-2021:2984
- REDHAT-RHSA-2021:3009
- REDHAT-RHSA-2021:3146
- REDHAT-RHSA-2021:3248
- REDHAT-RHSA-2021:3361
- REDHAT-RHSA-2021:3487
- REDHAT-RHSA-2021:3555
- REDHAT-RHSA-2021:3556
- REDHAT-RHSA-2021:3759
- REDHAT-RHSA-2021:3820
- REDHAT-RHSA-2021:4104
- REDHAT-RHSA-2021:4156
- REDHAT-RHSA-2021:5072
- REDHAT-RHSA-2021:5085
- REDHAT-RHSA-2021:5086
- REDHAT-RHSA-2022:0191
- REDHAT-RHSA-2022:0577
- REDHAT-RHSA-2022:0947
- REDHAT-RHSA-2022:1329
- REDHAT-RHSA-2022:1402
- REDHAT-RHSA-2022:7955
- REDHAT-RHSA-2022:8008
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.