FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

go -- multiple vulnerabilities

Affected packages
go < 1.17.7,1

Details

VuXML ID 096ab080-907c-11ec-bb14-002324b2fba8
Discovery 2022-02-10
Entry 2022-02-18

The Go project reports:

crypto/elliptic: fix IsOnCurve for big.Int values that are not valid coordinates

Some big.Int values that are not valid field elements (negative or overflowing) might cause Curve.IsOnCurve to incorrectly return true. Operating on those values may cause a panic or an invalid curve operation. Note that Unmarshal will never return such values.

math/big: prevent large memory consumption in Rat.SetString

An attacker can cause unbounded memory growth in a program using (*Rat).SetString due to an unhandled overflow.

cmd/go: prevent branches from materializing into versions

A branch whose name resembles a version tag (such as "v1.0.0" or "subdir/v2.0.0-dev") can be considered a valid version by the go command. Materializing versions from branches might be unexpected and bypass ACLs that limit the creation of tags but not branches.

References

CVE Name CVE-2022-23772
CVE Name CVE-2022-23773
CVE Name CVE-2022-23806
URL https://github.com/golang/go/issues/35671
URL https://github.com/golang/go/issues/50699
URL https://github.com/golang/go/issues/50974