Calling any of the Parse functions on Go source code which contains deeply nested literals can cause a panic due to stack exhaustion.
Metrics
Affected Vendors & Products
References
History
Mon, 23 Sep 2024 14:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Redhat
Redhat enterprise Linux |
|
CPEs | cpe:/a:redhat:enterprise_linux:8 cpe:/a:redhat:enterprise_linux:9 |
|
Vendors & Products |
Redhat
Redhat enterprise Linux |
Mon, 09 Sep 2024 14:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Sat, 07 Sep 2024 03:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-674 | |
References |
| |
Metrics |
threat_severity
|
cvssV3_1
|
Fri, 06 Sep 2024 21:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Calling any of the Parse functions on Go source code which contains deeply nested literals can cause a panic due to stack exhaustion. | |
Title | Stack exhaustion in all Parse functions in go/parser | |
References |
|
MITRE
Status: PUBLISHED
Assigner: Go
Published: 2024-09-06T20:42:42.518Z
Updated: 2024-09-26T15:03:07.202Z
Reserved: 2024-05-01T18:45:34.846Z
Link: CVE-2024-34155
Vulnrichment
Updated: 2024-09-26T15:03:07.202Z
NVD
Status : Awaiting Analysis
Published: 2024-09-06T21:15:11.947
Modified: 2024-09-09T13:03:38.303
Link: CVE-2024-34155
Redhat