vulnerability
Red Hat OpenShift: CVE-2022-24675: golang: encoding/pem: fix stack overflow in Decode
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
5 | (AV:N/AC:L/Au:N/C:N/I:N/A:P) | 2022-04-20 | 2022-08-02 | 2025-04-11 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
Published
2022-04-20
Added
2022-08-02
Modified
2025-04-11
Description
encoding/pem in Go before 1.17.9 and 1.18.x before 1.18.1 has a Decode stack overflow via a large amount of PEM data.
Solution(s)
linuxrpm-upgrade-buildahlinuxrpm-upgrade-butanelinuxrpm-upgrade-cri-olinuxrpm-upgrade-cri-toolslinuxrpm-upgrade-ignition
References
- CVE-2022-24675
- https://attackerkb.com/topics/CVE-2022-24675
- REDHAT-RHSA-2022:5006
- REDHAT-RHSA-2022:5068
- REDHAT-RHSA-2022:5337
- REDHAT-RHSA-2022:5415
- REDHAT-RHSA-2022:5729
- REDHAT-RHSA-2022:5730
- REDHAT-RHSA-2022:5799
- REDHAT-RHSA-2022:5840
- REDHAT-RHSA-2022:6040
- REDHAT-RHSA-2022:6042
- REDHAT-RHSA-2022:6094
- REDHAT-RHSA-2022:6152
- REDHAT-RHSA-2022:6155
- REDHAT-RHSA-2022:6156
- REDHAT-RHSA-2022:6277
- REDHAT-RHSA-2022:6290
- REDHAT-RHSA-2022:6430
- REDHAT-RHSA-2022:6526
- REDHAT-RHSA-2022:6714
- REDHAT-RHSA-2022:7058
- REDHAT-RHSA-2022:8750
- REDHAT-RHSA-2023:1529
- REDHAT-RHSA-2023:3642
- REDHAT-RHSA-2023:3914

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.