LIN1021-2584 : Security Advisory - go - CVE-2022-23772
Created: Jan 20, 2022
Updated: May 15, 2022
Resolved Date: May 15, 2022
Found In Version: 10.21.20.1
Fix Version: 10.21.20.13
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Userspace
Description
Rat.SetString in math/big in Go before 1.16.14 and 1.17.x before 1.17.7 has an overflow that can lead to Uncontrolled Memory Consumption.
https://nvd.nist.gov/vuln/detail/CVE-2022-23772