LIN10-9893 : Security Advisory - go - CVE-2022-24675
Created: Mar 31, 2022
Updated: Jun 28, 2022
Resolved Date: Jun 24, 2022
Found In Version: 10.17.41.1
Fix Version: 10.17.41.27
Severity: Standard
Applicable for: Wind River Linux LTS 17
Component/s: Userspace
Description
encoding/pem in Go before 1.17.9 and 1.8.x before 1.8.1 has a Decode stack overflow via a large amount of PEM data.
https://nvd.nist.gov/vuln/detail/CVE-2022-24675