Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635.
Metrics
Affected Vendors & Products
References
History
Fri, 27 Sep 2024 02:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:/a:redhat:rhel_aus:8.6 cpe:/a:redhat:rhel_e4s:8.6 cpe:/a:redhat:rhel_tus:8.6 |
Thu, 26 Sep 2024 22:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Redhat rhel Aus
Redhat rhel Tus |
|
CPEs | cpe:/a:redhat:rhel_aus:8.4 cpe:/a:redhat:rhel_e4s:8.4 cpe:/a:redhat:rhel_tus:8.4 |
|
Vendors & Products |
Redhat rhel Aus
Redhat rhel Tus |
Wed, 25 Sep 2024 22:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Redhat rhel E4s
|
|
CPEs | cpe:/a:redhat:rhel_e4s:9.0 | |
Vendors & Products |
Redhat rhel E4s
|
Mon, 23 Sep 2024 14:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Redhat
Redhat enterprise Linux Redhat rhel Eus |
|
CPEs | cpe:/a:redhat:enterprise_linux:8 cpe:/a:redhat:enterprise_linux:9 cpe:/a:redhat:rhel_eus:8.8 cpe:/a:redhat:rhel_eus:9.2 |
|
Vendors & Products |
Redhat
Redhat enterprise Linux Redhat rhel Eus |
Mon, 09 Sep 2024 15:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Go Standard Library
Go Standard Library encoding\/gob |
|
CPEs | cpe:2.3:a:go_standard_library:encoding\/gob:*:*:*:*:*:*:*:* | |
Vendors & Products |
Go Standard Library
Go Standard Library encoding\/gob |
|
Metrics |
ssvc
|
Sat, 07 Sep 2024 03:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-674 | |
References |
| |
Metrics |
threat_severity
|
cvssV3_1
|
Fri, 06 Sep 2024 21:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a follow-up to CVE-2022-30635. | |
Title | Stack exhaustion in Decoder.Decode in encoding/gob | |
References |
|
MITRE
Status: PUBLISHED
Assigner: Go
Published: 2024-09-06T20:42:42.661Z
Updated: 2024-09-26T15:03:08.203Z
Reserved: 2024-05-01T18:45:34.846Z
Link: CVE-2024-34156
Vulnrichment
Updated: 2024-09-26T15:03:08.203Z
NVD
Status : Awaiting Analysis
Published: 2024-09-06T21:15:12.020
Modified: 2024-09-09T15:35:07.573
Link: CVE-2024-34156
Redhat