Vulnerability-Lookup

WID-SEC-W-2023-2280

Vulnerability from csaf_certbund - Published: 2023-09-06 22:00 - Updated: 2025-05-29 22:00

Summary

Golang Go: Mehrere Schwachstellen

Severity

Mittel

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Go ist eine quelloffene Programmiersprache.

Angriff: Ein Angreifer kann mehrere Schwachstellen in Golang Go ausnutzen, um einen Cross-Site Scripting Angriff durchzuführen, Code auszuführen oder einen Denial of Service zu verursachen.

Betroffene Betriebssysteme: - Linux - Sonstiges - UNIX - Windows

CVE-2023-39318

CVE-2023-39319

CVE-2023-39320

CVE-2023-39321

CVE-2023-39322

References

URL

Category

	https://wid.cert-bund.de/.well-known/csaf/white/2…	self
	https://wid.cert-bund.de/portal/wid/securityadvis…	self
	https://groups.google.com/g/golang-announce/c/Fm5…	external
	https://lists.suse.com/pipermail/sle-security-upd…	external
	https://lists.suse.com/pipermail/sle-security-upd…	external
	https://lists.suse.com/pipermail/sle-security-upd…	external
	https://access.redhat.com/errata/RHSA-2023:5974	external
	https://access.redhat.com/errata/RHSA-2023:6031	external
	https://access.redhat.com/errata/RHSA-2023:6119	external
	https://access.redhat.com/errata/RHSA-2023:6122	external
	https://access.redhat.com/errata/RHSA-2023:6115	external
	https://access.redhat.com/errata/RHSA-2023:6145	external
	https://access.redhat.com/errata/RHSA-2023:5947	external
	https://access.redhat.com/errata/RHSA-2023:6148	external
	https://bodhi.fedoraproject.org/updates/FEDORA-EP…	external
	https://access.redhat.com/errata/RHSA-2023:6161	external
	https://access.redhat.com/errata/RHSA-2023:6202	external
	https://access.redhat.com/errata/RHSA-2023:6200	external
	https://access.redhat.com/errata/RHSA-2023:5009	external
	https://access.redhat.com/errata/RHSA-2023:6154	external
	https://lists.suse.com/pipermail/sle-security-upd…	external
	https://bodhi.fedoraproject.org/updates/FEDORA-EP…	external
	https://security.gentoo.org/glsa/202311-09	external
	https://access.redhat.com/errata/RHSA-2023:7517	external
	https://access.redhat.com/errata/RHSA-2023:7763	external
	https://access.redhat.com/errata/RHSA-2023:7766	external
	https://access.redhat.com/errata/RHSA-2023:7765	external
	https://access.redhat.com/errata/RHSA-2023:7762	external
	https://access.redhat.com/errata/RHSA-2023:7764	external
	https://linux.oracle.com/errata/ELSA-2023-7765.html	external
	https://linux.oracle.com/errata/ELSA-2023-7763.html	external
	https://linux.oracle.com/errata/ELSA-2023-7766.html	external
	https://ubuntu.com/security/notices/USN-6574-1	external
	https://access.redhat.com/errata/RHSA-2024:0121	external
	https://security.business.xerox.com/wp-content/up…	external
	https://security.business.xerox.com/wp-content/up…	external
	https://access.redhat.com/errata/RHSA-2024:1901	external
	https://linux.oracle.com/errata/ELSA-2024-2098.html	external
	https://access.redhat.com/errata/RHSA-2024:2160	external
	https://access.redhat.com/errata/RHSA-2024:2988	external
	https://access.redhat.com/errata/RHSA-2024:3352	external
	https://linux.oracle.com/errata/ELSA-2024-2988.html	external
	https://access.redhat.com/errata/RHSA-2024:3467	external
	https://www.ibm.com/support/pages/node/7161954	external
	https://www.ibm.com/support/pages/node/7162077	external
	https://ubuntu.com/security/notices/USN-7061-1	external
	https://advisory.splunk.com//advisories/SVD-2024-1012	external
	https://ubuntu.com/security/notices/USN-7109-1	external
	https://access.redhat.com/errata/RHSA-2025:7256	external
	https://access.redhat.com/errata/RHSA-2025:8277	external
	https://access.redhat.com/errata/RHSA-2025:8274	external
	https://rhn.redhat.com/errata/RHSA-2025:8274.html	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Go ist eine quelloffene Programmiersprache.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in Golang Go ausnutzen, um einen Cross-Site Scripting Angriff durchzuf\u00fchren, Code auszuf\u00fchren oder einen Denial of Service zu verursachen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-2280 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2280.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-2280 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2280"
      },
      {
        "category": "external",
        "summary": "Golang Announce  vom 2023-09-06",
        "url": "https://groups.google.com/g/golang-announce/c/Fm51GRLNRvM"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2023:3701-1 vom 2023-09-20",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2023-September/016236.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2023:3700-1 vom 2023-09-20",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2023-September/016237.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2023:3840-1 vom 2023-09-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2023-September/016353.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:5974 vom 2023-10-21",
        "url": "https://access.redhat.com/errata/RHSA-2023:5974"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:6031 vom 2023-10-24",
        "url": "https://access.redhat.com/errata/RHSA-2023:6031"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:6119 vom 2023-10-26",
        "url": "https://access.redhat.com/errata/RHSA-2023:6119"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:6122 vom 2023-10-26",
        "url": "https://access.redhat.com/errata/RHSA-2023:6122"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:6115 vom 2023-10-26",
        "url": "https://access.redhat.com/errata/RHSA-2023:6115"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:6145 vom 2023-10-27",
        "url": "https://access.redhat.com/errata/RHSA-2023:6145"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:5947 vom 2023-10-26",
        "url": "https://access.redhat.com/errata/RHSA-2023:5947"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:6148 vom 2023-10-27",
        "url": "https://access.redhat.com/errata/RHSA-2023:6148"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-EPEL-2023-B951076A0F vom 2023-10-27",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-b951076a0f"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:6161 vom 2023-10-30",
        "url": "https://access.redhat.com/errata/RHSA-2023:6161"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:6202 vom 2023-10-31",
        "url": "https://access.redhat.com/errata/RHSA-2023:6202"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:6200 vom 2023-10-31",
        "url": "https://access.redhat.com/errata/RHSA-2023:6200"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:5009 vom 2023-11-01",
        "url": "https://access.redhat.com/errata/RHSA-2023:5009"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:6154 vom 2023-11-01",
        "url": "https://access.redhat.com/errata/RHSA-2023:6154"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2023:4469-1 vom 2023-11-16",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2023-November/017050.html"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-EPEL-2023-1C906D04EE vom 2023-11-24",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-1c906d04ee"
      },
      {
        "category": "external",
        "summary": "Gentoo Linux Security Advisory GLSA-202311-09 vom 2023-11-25",
        "url": "https://security.gentoo.org/glsa/202311-09"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:7517 vom 2023-11-28",
        "url": "https://access.redhat.com/errata/RHSA-2023:7517"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:7763 vom 2023-12-13",
        "url": "https://access.redhat.com/errata/RHSA-2023:7763"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:7766 vom 2023-12-13",
        "url": "https://access.redhat.com/errata/RHSA-2023:7766"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:7765 vom 2023-12-13",
        "url": "https://access.redhat.com/errata/RHSA-2023:7765"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:7762 vom 2023-12-13",
        "url": "https://access.redhat.com/errata/RHSA-2023:7762"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:7764 vom 2023-12-13",
        "url": "https://access.redhat.com/errata/RHSA-2023:7764"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2023-7765 vom 2023-12-14",
        "url": "https://linux.oracle.com/errata/ELSA-2023-7765.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2023-7763 vom 2023-12-14",
        "url": "https://linux.oracle.com/errata/ELSA-2023-7763.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2023-7766 vom 2023-12-14",
        "url": "https://linux.oracle.com/errata/ELSA-2023-7766.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6574-1 vom 2024-01-11",
        "url": "https://ubuntu.com/security/notices/USN-6574-1"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:0121 vom 2024-01-10",
        "url": "https://access.redhat.com/errata/RHSA-2024:0121"
      },
      {
        "category": "external",
        "summary": "XEROX Security Advisory XRX24-004 vom 2024-03-04",
        "url": "https://security.business.xerox.com/wp-content/uploads/2024/03/Xerox%C2%AE-Security-Bulletin-XRX24-004-Xerox%C2%AE-FreeFlow%C2%AE-Print-Server-v7.pdf"
      },
      {
        "category": "external",
        "summary": "XEROX Security Advisory XRX24-005 vom 2024-03-04",
        "url": "https://security.business.xerox.com/wp-content/uploads/2024/03/Xerox-Security-Bulletin-XRX24-005-Xerox-FreeFlow%C2%AE-Print-Server-v9_Feb-2024.pdf"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:1901 vom 2024-04-18",
        "url": "https://access.redhat.com/errata/RHSA-2024:1901"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2024-2098 vom 2024-04-30",
        "url": "https://linux.oracle.com/errata/ELSA-2024-2098.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:2160 vom 2024-04-30",
        "url": "https://access.redhat.com/errata/RHSA-2024:2160"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:2988 vom 2024-05-22",
        "url": "https://access.redhat.com/errata/RHSA-2024:2988"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:3352 vom 2024-05-23",
        "url": "https://access.redhat.com/errata/RHSA-2024:3352"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2024-2988 vom 2024-05-28",
        "url": "https://linux.oracle.com/errata/ELSA-2024-2988.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:3467 vom 2024-05-29",
        "url": "https://access.redhat.com/errata/RHSA-2024:3467"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7161954 vom 2024-07-30",
        "url": "https://www.ibm.com/support/pages/node/7161954"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7162077 vom 2024-07-31",
        "url": "https://www.ibm.com/support/pages/node/7162077"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7061-1 vom 2024-10-10",
        "url": "https://ubuntu.com/security/notices/USN-7061-1"
      },
      {
        "category": "external",
        "summary": "Splunk Security Advisory SVD-2024-1012 vom 2024-10-14",
        "url": "https://advisory.splunk.com//advisories/SVD-2024-1012"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7109-1 vom 2024-11-14",
        "url": "https://ubuntu.com/security/notices/USN-7109-1"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:7256 vom 2025-05-13",
        "url": "https://access.redhat.com/errata/RHSA-2025:7256"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:8277 vom 2025-05-28",
        "url": "https://access.redhat.com/errata/RHSA-2025:8277"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:8274 vom 2025-05-28",
        "url": "https://access.redhat.com/errata/RHSA-2025:8274"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:8274 vom 2025-05-29",
        "url": "https://rhn.redhat.com/errata/RHSA-2025:8274.html"
      }
    ],
    "source_lang": "en-US",
    "title": "Golang Go: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-05-29T22:00:00.000+00:00",
      "generator": {
        "date": "2025-05-30T09:12:25.173+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.12"
        }
      },
      "id": "WID-SEC-W-2023-2280",
      "initial_release_date": "2023-09-06T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-09-06T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-09-20T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2023-09-27T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2023-10-22T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-10-23T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-10-25T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-10-26T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-10-29T23:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von Fedora aufgenommen"
        },
        {
          "date": "2023-10-30T23:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-10-31T23:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-11-16T23:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2023-11-23T23:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von Fedora aufgenommen"
        },
        {
          "date": "2023-11-26T23:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von Gentoo aufgenommen"
        },
        {
          "date": "2023-11-27T23:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-12-12T23:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-12-14T23:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2024-01-10T23:00:00.000+00:00",
          "number": "17",
          "summary": "Neue Updates von Ubuntu und Red Hat aufgenommen"
        },
        {
          "date": "2024-03-03T23:00:00.000+00:00",
          "number": "18",
          "summary": "Neue Updates von XEROX aufgenommen"
        },
        {
          "date": "2024-04-17T22:00:00.000+00:00",
          "number": "19",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-04-29T22:00:00.000+00:00",
          "number": "20",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2024-05-21T22:00:00.000+00:00",
          "number": "21",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-05-23T22:00:00.000+00:00",
          "number": "22",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-05-28T22:00:00.000+00:00",
          "number": "23",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2024-05-30T22:00:00.000+00:00",
          "number": "24",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-07-30T22:00:00.000+00:00",
          "number": "25",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2024-07-31T22:00:00.000+00:00",
          "number": "26",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2024-10-10T22:00:00.000+00:00",
          "number": "27",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-10-14T22:00:00.000+00:00",
          "number": "28",
          "summary": "Neue Updates von Splunk-SVD aufgenommen"
        },
        {
          "date": "2024-11-14T23:00:00.000+00:00",
          "number": "29",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2025-05-13T22:00:00.000+00:00",
          "number": "30",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-05-29T22:00:00.000+00:00",
          "number": "31",
          "summary": "Neue Updates von Red Hat aufgenommen"
        }
      ],
      "status": "final",
      "version": "31"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Fedora Linux",
            "product": {
              "name": "Fedora Linux",
              "product_id": "74185",
              "product_identification_helper": {
                "cpe": "cpe:/o:fedoraproject:fedora:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Fedora"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Gentoo Linux",
            "product": {
              "name": "Gentoo Linux",
              "product_id": "T012167",
              "product_identification_helper": {
                "cpe": "cpe:/o:gentoo:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Gentoo"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c1.21.1",
                "product": {
                  "name": "Golang Go \u003c1.21.1",
                  "product_id": "T029752"
                }
              },
              {
                "category": "product_version",
                "name": "1.21.1",
                "product": {
                  "name": "Golang Go 1.21.1",
                  "product_id": "T029752-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:golang:go:1.21.1"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c1.20.8",
                "product": {
                  "name": "Golang Go \u003c1.20.8",
                  "product_id": "T029753"
                }
              },
              {
                "category": "product_version",
                "name": "1.20.8",
                "product": {
                  "name": "Golang Go 1.20.8",
                  "product_id": "T029753-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:golang:go:1.20.8"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Go"
          }
        ],
        "category": "vendor",
        "name": "Golang"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c10.1.16.2",
                "product": {
                  "name": "IBM Spectrum Protect Plus \u003c10.1.16.2",
                  "product_id": "T036379"
                }
              },
              {
                "category": "product_version",
                "name": "10.1.16.2",
                "product": {
                  "name": "IBM Spectrum Protect Plus 10.1.16.2",
                  "product_id": "T036379-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:spectrum_protect_plus:10.1.16.2"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Spectrum Protect Plus"
          }
        ],
        "category": "vendor",
        "name": "IBM"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "16.2",
                "product": {
                  "name": "Red Hat OpenStack 16.2",
                  "product_id": "T023999",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openstack:16.2"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "OpenStack"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c9.3.1",
                "product": {
                  "name": "Splunk Splunk Enterprise \u003c9.3.1",
                  "product_id": "T038314"
                }
              },
              {
                "category": "product_version",
                "name": "9.3.1",
                "product": {
                  "name": "Splunk Splunk Enterprise 9.3.1",
                  "product_id": "T038314-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:splunk:splunk:9.3.1"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.2.3",
                "product": {
                  "name": "Splunk Splunk Enterprise \u003c9.2.3",
                  "product_id": "T038315"
                }
              },
              {
                "category": "product_version",
                "name": "9.2.3",
                "product": {
                  "name": "Splunk Splunk Enterprise 9.2.3",
                  "product_id": "T038315-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:splunk:splunk:9.2.3"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c9.1.6",
                "product": {
                  "name": "Splunk Splunk Enterprise \u003c9.1.6",
                  "product_id": "T038316"
                }
              },
              {
                "category": "product_version",
                "name": "9.1.6",
                "product": {
                  "name": "Splunk Splunk Enterprise 9.1.6",
                  "product_id": "T038316-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:splunk:splunk:9.1.6"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Splunk Enterprise"
          }
        ],
        "category": "vendor",
        "name": "Splunk"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "v7",
                "product": {
                  "name": "Xerox FreeFlow Print Server v7",
                  "product_id": "T015631",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:xerox:freeflow_print_server:v7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "v9",
                "product": {
                  "name": "Xerox FreeFlow Print Server v9",
                  "product_id": "T015632",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:xerox:freeflow_print_server:v9"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "FreeFlow Print Server"
          }
        ],
        "category": "vendor",
        "name": "Xerox"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-39318",
      "product_status": {
        "known_affected": [
          "67646",
          "T038314",
          "T015632",
          "T036379",
          "T038315",
          "T012167",
          "T015631",
          "T038316",
          "T004914",
          "74185",
          "T023999",
          "T002207",
          "T000126",
          "T029753",
          "T029752"
        ]
      },
      "release_date": "2023-09-06T22:00:00.000+00:00",
      "title": "CVE-2023-39318"
    },
    {
      "cve": "CVE-2023-39319",
      "product_status": {
        "known_affected": [
          "67646",
          "T038314",
          "T015632",
          "T036379",
          "T038315",
          "T012167",
          "T015631",
          "T038316",
          "T004914",
          "74185",
          "T023999",
          "T002207",
          "T000126",
          "T029753",
          "T029752"
        ]
      },
      "release_date": "2023-09-06T22:00:00.000+00:00",
      "title": "CVE-2023-39319"
    },
    {
      "cve": "CVE-2023-39320",
      "product_status": {
        "known_affected": [
          "67646",
          "T038314",
          "T015632",
          "T036379",
          "T038315",
          "T012167",
          "T015631",
          "T038316",
          "T004914",
          "74185",
          "T023999",
          "T002207",
          "T000126",
          "T029752"
        ]
      },
      "release_date": "2023-09-06T22:00:00.000+00:00",
      "title": "CVE-2023-39320"
    },
    {
      "cve": "CVE-2023-39321",
      "product_status": {
        "known_affected": [
          "67646",
          "T038314",
          "T015632",
          "T036379",
          "T038315",
          "T012167",
          "T015631",
          "T038316",
          "T004914",
          "74185",
          "T023999",
          "T002207",
          "T000126",
          "T029753",
          "T029752"
        ]
      },
      "release_date": "2023-09-06T22:00:00.000+00:00",
      "title": "CVE-2023-39321"
    },
    {
      "cve": "CVE-2023-39322",
      "product_status": {
        "known_affected": [
          "67646",
          "T038314",
          "T015632",
          "T036379",
          "T038315",
          "T012167",
          "T015631",
          "T038316",
          "T004914",
          "74185",
          "T023999",
          "T002207",
          "T000126",
          "T029753",
          "T029752"
        ]
      },
      "release_date": "2023-09-06T22:00:00.000+00:00",
      "title": "CVE-2023-39322"
    }
  ]
}

CVE-2023-39322 (GCVE-0-2023-39322)

Vulnerability from cvelistv5 – Published: 2023-09-08 16:13 – Updated: 2025-02-13 17:02

Title

Memory exhaustion in QUIC connection handling in crypto/tls

Summary

QUIC connections do not set an upper bound on the amount of data buffered when reading post-handshake messages, allowing a malicious QUIC connection to cause unbounded memory growth. With fix, connections now consistently reject messages larger than 65KiB in size.

Severity ?

No CVSS data available.

CWE

CWE-400 - Uncontrolled Resource Consumption

Assigner

References

URL

Tags

	https://go.dev/issue/62266
	https://go.dev/cl/523039
	https://groups.google.com/g/golang-dev/c/2C5vbR-U…
	https://pkg.go.dev/vuln/GO-2023-2045
	https://security.netapp.com/advisory/ntap-2023102…
	https://security.gentoo.org/glsa/202311-09

Impacted products

	Vendor	Product	Version
	Go standard library	crypto/tls	Affected: 1.21.0-0 , < 1.21.1 (semver)

Credits

Marten Seemann

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T18:02:07.098Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://go.dev/issue/62266"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://go.dev/cl/523039"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://pkg.go.dev/vuln/GO-2023-2045"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20231020-0004/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202311-09"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:go_standard_library:crypto_tls:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "crypto_tls",
            "vendor": "go_standard_library",
            "versions": [
              {
                "lessThan": "1.21.1",
                "status": "affected",
                "version": "1.21.0-0",
                "versionType": "semver"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-39322",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-26T15:53:33.932737Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-26T15:56:13.357Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://pkg.go.dev",
          "defaultStatus": "unaffected",
          "packageName": "crypto/tls",
          "product": "crypto/tls",
          "programRoutines": [
            {
              "name": "QUICConn.HandleData"
            }
          ],
          "vendor": "Go standard library",
          "versions": [
            {
              "lessThan": "1.21.1",
              "status": "affected",
              "version": "1.21.0-0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Marten Seemann"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "QUIC connections do not set an upper bound on the amount of data buffered when reading post-handshake messages, allowing a malicious QUIC connection to cause unbounded memory growth. With fix, connections now consistently reject messages larger than 65KiB in size."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "CWE-400: Uncontrolled Resource Consumption",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-11-25T11:09:57.257Z",
        "orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
        "shortName": "Go"
      },
      "references": [
        {
          "url": "https://go.dev/issue/62266"
        },
        {
          "url": "https://go.dev/cl/523039"
        },
        {
          "url": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ"
        },
        {
          "url": "https://pkg.go.dev/vuln/GO-2023-2045"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20231020-0004/"
        },
        {
          "url": "https://security.gentoo.org/glsa/202311-09"
        }
      ],
      "title": "Memory exhaustion in QUIC connection handling in crypto/tls"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
    "assignerShortName": "Go",
    "cveId": "CVE-2023-39322",
    "datePublished": "2023-09-08T16:13:32.795Z",
    "dateReserved": "2023-07-27T17:05:55.187Z",
    "dateUpdated": "2025-02-13T17:02:49.143Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-39318 (GCVE-0-2023-39318)

Vulnerability from cvelistv5 – Published: 2023-09-08 16:13 – Updated: 2025-02-13 17:02

Title

Improper handling of HTML-like comments in script contexts in html/template

Summary

The html/template package does not properly handle HTML-like "" comment tokens, nor hashbang "#!" comment tokens, in <script> contexts. This may cause the template parser to improperly interpret the contents of <script> contexts, causing actions to be improperly escaped. This may be leveraged to perform an XSS attack.

Severity ?

No CVSS data available.

CWE

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Assigner

References

URL

Tags

	https://go.dev/issue/62196
	https://go.dev/cl/526156
	https://groups.google.com/g/golang-dev/c/2C5vbR-U…
	https://pkg.go.dev/vuln/GO-2023-2041
	https://security.netapp.com/advisory/ntap-2023102…
	https://security.gentoo.org/glsa/202311-09

Impacted products

	Vendor	Product	Version
	Go standard library	html/template	Affected: 0 , < 1.20.8 (semver) Affected: 1.21.0-0 , < 1.21.1 (semver)

Credits

Takeshi Kaneko (GMO Cybersecurity by Ierae, Inc.)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T18:02:06.918Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://go.dev/issue/62196"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://go.dev/cl/526156"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://pkg.go.dev/vuln/GO-2023-2041"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20231020-0009/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202311-09"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-39318",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-26T16:02:51.219482Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-26T16:05:10.408Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://pkg.go.dev",
          "defaultStatus": "unaffected",
          "packageName": "html/template",
          "product": "html/template",
          "programRoutines": [
            {
              "name": "isComment"
            },
            {
              "name": "escaper.escapeText"
            },
            {
              "name": "tJS"
            },
            {
              "name": "tLineCmt"
            },
            {
              "name": "Template.Execute"
            },
            {
              "name": "Template.ExecuteTemplate"
            }
          ],
          "vendor": "Go standard library",
          "versions": [
            {
              "lessThan": "1.20.8",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "1.21.1",
              "status": "affected",
              "version": "1.21.0-0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Takeshi Kaneko (GMO Cybersecurity by Ierae, Inc.)"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "The html/template package does not properly handle HTML-like \"\" comment tokens, nor hashbang \"#!\" comment tokens, in \u003cscript\u003e contexts. This may cause the template parser to improperly interpret the contents of \u003cscript\u003e contexts, causing actions to be improperly escaped. This may be leveraged to perform an XSS attack."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "CWE-79: Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-11-25T11:10:02.660Z",
        "orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
        "shortName": "Go"
      },
      "references": [
        {
          "url": "https://go.dev/issue/62196"
        },
        {
          "url": "https://go.dev/cl/526156"
        },
        {
          "url": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ"
        },
        {
          "url": "https://pkg.go.dev/vuln/GO-2023-2041"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20231020-0009/"
        },
        {
          "url": "https://security.gentoo.org/glsa/202311-09"
        }
      ],
      "title": "Improper handling of HTML-like comments in script contexts in html/template"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
    "assignerShortName": "Go",
    "cveId": "CVE-2023-39318",
    "datePublished": "2023-09-08T16:13:24.063Z",
    "dateReserved": "2023-07-27T17:05:55.186Z",
    "dateUpdated": "2025-02-13T17:02:46.777Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-39321 (GCVE-0-2023-39321)

Vulnerability from cvelistv5 – Published: 2023-09-08 16:13 – Updated: 2025-02-13 17:02

Title

Panic when processing post-handshake message on QUIC connections in crypto/tls

Summary

Processing an incomplete post-handshake message for a QUIC connection can cause a panic.

Severity ?

No CVSS data available.

CWE

CWE-400 - Uncontrolled Resource Consumption

Assigner

References

URL

Tags

	https://go.dev/issue/62266
	https://go.dev/cl/523039
	https://groups.google.com/g/golang-dev/c/2C5vbR-U…
	https://pkg.go.dev/vuln/GO-2023-2044
	https://security.netapp.com/advisory/ntap-2023102…
	https://security.gentoo.org/glsa/202311-09

Impacted products

	Vendor	Product	Version
	Go standard library	crypto/tls	Affected: 1.21.0-0 , < 1.21.1 (semver)

Credits

Marten Seemann

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T18:02:06.893Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://go.dev/issue/62266"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://go.dev/cl/523039"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://pkg.go.dev/vuln/GO-2023-2044"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20231020-0004/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202311-09"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-39321",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-26T17:23:57.925389Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-400",
                "description": "CWE-400 Uncontrolled Resource Consumption",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-26T17:25:25.677Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://pkg.go.dev",
          "defaultStatus": "unaffected",
          "packageName": "crypto/tls",
          "product": "crypto/tls",
          "programRoutines": [
            {
              "name": "QUICConn.HandleData"
            }
          ],
          "vendor": "Go standard library",
          "versions": [
            {
              "lessThan": "1.21.1",
              "status": "affected",
              "version": "1.21.0-0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Marten Seemann"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Processing an incomplete post-handshake message for a QUIC connection can cause a panic."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "CWE-400: Uncontrolled Resource Consumption",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-11-25T11:09:32.105Z",
        "orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
        "shortName": "Go"
      },
      "references": [
        {
          "url": "https://go.dev/issue/62266"
        },
        {
          "url": "https://go.dev/cl/523039"
        },
        {
          "url": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ"
        },
        {
          "url": "https://pkg.go.dev/vuln/GO-2023-2044"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20231020-0004/"
        },
        {
          "url": "https://security.gentoo.org/glsa/202311-09"
        }
      ],
      "title": "Panic when processing post-handshake message on QUIC connections in crypto/tls"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
    "assignerShortName": "Go",
    "cveId": "CVE-2023-39321",
    "datePublished": "2023-09-08T16:13:30.386Z",
    "dateReserved": "2023-07-27T17:05:55.187Z",
    "dateUpdated": "2025-02-13T17:02:48.554Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-39319 (GCVE-0-2023-39319)

Vulnerability from cvelistv5 – Published: 2023-09-08 16:13 – Updated: 2025-02-13 17:02

Title

Improper handling of special tags within script contexts in html/template

Summary

The html/template package does not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack.

Severity ?

No CVSS data available.

CWE

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Assigner

References

URL

Tags

	https://go.dev/issue/62197
	https://go.dev/cl/526157
	https://groups.google.com/g/golang-dev/c/2C5vbR-U…
	https://pkg.go.dev/vuln/GO-2023-2043
	https://security.netapp.com/advisory/ntap-2023102…
	https://security.gentoo.org/glsa/202311-09

Impacted products

	Vendor	Product	Version
	Go standard library	html/template	Affected: 0 , < 1.20.8 (semver) Affected: 1.21.0-0 , < 1.21.1 (semver)

Credits

Takeshi Kaneko (GMO Cybersecurity by Ierae, Inc.)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T18:02:06.746Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://go.dev/issue/62197"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://go.dev/cl/526157"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://pkg.go.dev/vuln/GO-2023-2043"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20231020-0009/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202311-09"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-39319",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-26T16:02:49.339620Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-26T16:04:58.123Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://pkg.go.dev",
          "defaultStatus": "unaffected",
          "packageName": "html/template",
          "product": "html/template",
          "programRoutines": [
            {
              "name": "escaper.escapeText"
            },
            {
              "name": "tSpecialTagEnd"
            },
            {
              "name": "indexTagEnd"
            },
            {
              "name": "Template.Execute"
            },
            {
              "name": "Template.ExecuteTemplate"
            }
          ],
          "vendor": "Go standard library",
          "versions": [
            {
              "lessThan": "1.20.8",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThan": "1.21.1",
              "status": "affected",
              "version": "1.21.0-0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Takeshi Kaneko (GMO Cybersecurity by Ierae, Inc.)"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "The html/template package does not apply the proper rules for handling occurrences of \"\u003cscript\", \"\u003c!--\", and \"\u003c/script\" within JS literals in \u003cscript\u003e contexts. This may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped. This could be leveraged to perform an XSS attack."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "CWE-79: Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-11-25T11:10:06.783Z",
        "orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
        "shortName": "Go"
      },
      "references": [
        {
          "url": "https://go.dev/issue/62197"
        },
        {
          "url": "https://go.dev/cl/526157"
        },
        {
          "url": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ"
        },
        {
          "url": "https://pkg.go.dev/vuln/GO-2023-2043"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20231020-0009/"
        },
        {
          "url": "https://security.gentoo.org/glsa/202311-09"
        }
      ],
      "title": "Improper handling of special tags within script contexts in html/template"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
    "assignerShortName": "Go",
    "cveId": "CVE-2023-39319",
    "datePublished": "2023-09-08T16:13:28.663Z",
    "dateReserved": "2023-07-27T17:05:55.186Z",
    "dateUpdated": "2025-02-13T17:02:47.366Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2023-39320 (GCVE-0-2023-39320)

Vulnerability from cvelistv5 – Published: 2023-09-08 16:13 – Updated: 2025-02-13 17:02

Title

Arbitrary code execution via go.mod toolchain directive in cmd/go

Summary

The go.mod toolchain directive, introduced in Go 1.21, can be leveraged to execute scripts and binaries relative to the root of the module when the "go" command was executed within the module. This applies to modules downloaded using the "go" command from the module proxy, as well as modules downloaded directly using VCS software.

Severity ?

No CVSS data available.

CWE

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Assigner

References

URL

Tags

	https://go.dev/issue/62198
	https://go.dev/cl/526158
	https://groups.google.com/g/golang-dev/c/2C5vbR-U…
	https://pkg.go.dev/vuln/GO-2023-2042
	https://security.netapp.com/advisory/ntap-2023102…
	https://security.gentoo.org/glsa/202311-09

Impacted products

	Vendor	Product	Version
	Go toolchain	cmd/go	Affected: 1.21.0-0 , < 1.21.1 (semver)

Credits

Juho Nurminen of Mattermost

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T18:02:06.849Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://go.dev/issue/62198"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://go.dev/cl/526158"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://pkg.go.dev/vuln/GO-2023-2042"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20231020-0004/"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202311-09"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-39320",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-26T17:28:10.391044Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-26T17:28:41.807Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://pkg.go.dev",
          "defaultStatus": "unaffected",
          "packageName": "cmd/go",
          "product": "cmd/go",
          "vendor": "Go toolchain",
          "versions": [
            {
              "lessThan": "1.21.1",
              "status": "affected",
              "version": "1.21.0-0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Juho Nurminen of Mattermost"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "The go.mod toolchain directive, introduced in Go 1.21, can be leveraged to execute scripts and binaries relative to the root of the module when the \"go\" command was executed within the module. This applies to modules downloaded using the \"go\" command from the module proxy, as well as modules downloaded directly using VCS software."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "CWE-94: Improper Control of Generation of Code (\u0027Code Injection\u0027)",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-11-25T11:10:00.880Z",
        "orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
        "shortName": "Go"
      },
      "references": [
        {
          "url": "https://go.dev/issue/62198"
        },
        {
          "url": "https://go.dev/cl/526158"
        },
        {
          "url": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ"
        },
        {
          "url": "https://pkg.go.dev/vuln/GO-2023-2042"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20231020-0004/"
        },
        {
          "url": "https://security.gentoo.org/glsa/202311-09"
        }
      ],
      "title": "Arbitrary code execution via go.mod toolchain directive in cmd/go"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
    "assignerShortName": "Go",
    "cveId": "CVE-2023-39320",
    "datePublished": "2023-09-08T16:13:26.609Z",
    "dateReserved": "2023-07-27T17:05:55.186Z",
    "dateUpdated": "2025-02-13T17:02:48.022Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

WID-SEC-W-2023-2280

CVE-2023-39322 (GCVE-0-2023-39322)

CVE-2023-39318 (GCVE-0-2023-39318)

CVE-2023-39321 (GCVE-0-2023-39321)

CVE-2023-39319 (GCVE-0-2023-39319)

CVE-2023-39320 (GCVE-0-2023-39320)

Tags

Sightings

Nomenclature