RHSA-2020:5493
- Source
- https://access.redhat.com/errata/RHSA-2020:5493
- Import Source
- https://security.access.redhat.com/data/osv/RHSA-2020:5493.json
- JSON Data
- https://api.osv.dev/v1/vulns/RHSA-2020:5493
- Related
- Published
- 2024-09-18T04:16:09Z
- Modified
- 2024-10-27T19:10:20Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- Red Hat Security Advisory: go-toolset:rhel8 security update
- Details
- References
-
- https://access.redhat.com/errata/RHSA-2020:5493
- https://access.redhat.com/security/updates/classification/#moderate
- https://access.redhat.com/documentation/en-us/red_hat_developer_tools/1/html/using_go_1.14.10_toolset
- https://bugzilla.redhat.com/show_bug.cgi?id=1874857
- https://bugzilla.redhat.com/show_bug.cgi?id=1897635
- https://bugzilla.redhat.com/show_bug.cgi?id=1897643
- https://bugzilla.redhat.com/show_bug.cgi?id=1897646
- https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_5493.json
- https://access.redhat.com/security/cve/CVE-2020-24553
- https://www.cve.org/CVERecord?id=CVE-2020-24553
- https://nvd.nist.gov/vuln/detail/CVE-2020-24553
- https://groups.google.com/forum/#!topic/golang-announce/8wqlSbkLdPs
- https://www.redteam-pentesting.de/en/advisories/rt-sa-2020-004/-inconsistent-behavior-of-gos-cgi-and-fastcgi-transport-may-lead-to-cross-site-scripting
- https://access.redhat.com/security/cve/CVE-2020-28362
- https://www.cve.org/CVERecord?id=CVE-2020-28362
- https://nvd.nist.gov/vuln/detail/CVE-2020-28362
- https://access.redhat.com/security/cve/CVE-2020-28366
- https://www.cve.org/CVERecord?id=CVE-2020-28366
- https://nvd.nist.gov/vuln/detail/CVE-2020-28366
- https://groups.google.com/g/golang-announce/c/NpBGTTmKzpM/m/fLguyiM2CAAJ
- https://access.redhat.com/security/cve/CVE-2020-28367
- https://www.cve.org/CVERecord?id=CVE-2020-28367
- https://nvd.nist.gov/vuln/detail/CVE-2020-28367
Affected packages
Red Hat:enterprise_linux:8::appstream / delve
Package
- Name
- delve
- Purl
- pkg:rpm/redhat/delve
Red Hat:enterprise_linux:8::appstream / delve-debuginfo
Package
- Name
- delve-debuginfo
- Purl
- pkg:rpm/redhat/delve-debuginfo
Red Hat:enterprise_linux:8::appstream / delve-debugsource
Package
- Name
- delve-debugsource
- Purl
- pkg:rpm/redhat/delve-debugsource
Red Hat:enterprise_linux:8::appstream / go-toolset
Package
- Name
- go-toolset
- Purl
- pkg:rpm/redhat/go-toolset
Red Hat:enterprise_linux:8::appstream / golang
Package
- Name
- golang
- Purl
- pkg:rpm/redhat/golang
Red Hat:enterprise_linux:8::appstream / golang-bin
Package
- Name
- golang-bin
- Purl
- pkg:rpm/redhat/golang-bin
Red Hat:enterprise_linux:8::appstream / golang-docs
Package
- Name
- golang-docs
- Purl
- pkg:rpm/redhat/golang-docs
Red Hat:enterprise_linux:8::appstream / golang-misc
Package
- Name
- golang-misc
- Purl
- pkg:rpm/redhat/golang-misc
Red Hat:enterprise_linux:8::appstream / golang-race
Package
- Name
- golang-race
- Purl
- pkg:rpm/redhat/golang-race
Red Hat:enterprise_linux:8::appstream / golang-src
Package
- Name
- golang-src
- Purl
- pkg:rpm/redhat/golang-src