virus logo FortiClient Vulnerability

Fedora golang CVE-2022-24921 Denial of Service Vulnerability

description-logoDescription

A stack overflow flaw was found in Golang's regexp module, which can crash the runtime if the application using regexp accepts very long or arbitrarily long regexps from untrusted sources that have sufficient nesting depths. To exploit this vulnerability, an attacker would need to send large regexps with deep nesting to the application. Triggering this flaw leads to a crash of the runtime, which causes a denial of service.

affected-products-logoAffected Applications

golang

CVE References

CVE-2022-24921

Other References

https://bugzilla.redhat.com/show_bug.cgi?id=2064857
ID 72772
Created Jul 16, 2022
Description
Updated		 Jan 24, 2024
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Linux
Vendor Fedora
Patch auto
Application golang