CVE-2020-16845

CVE Details

Release Date:2020-08-06

Description


Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs.

See more information about CVE-2020-16845 from MITRE CVE dictionary and NIST NVD


CVSS v3.0 metrics


NOTE: The following CVSS v3.0 metrics and score provided are preliminary and subject to review.

Base Score: 7.5 Base Metrics: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Vector: Network Attack Complexity: Low
Privileges Required: None User Interaction: None
Scope: Unchanged Confidentiality Impact: None
Integrity Impact: None Availability Impact: High

Errata information


PlatformErrataRelease Date
Oracle Linux version 7 (conmon)ELSA-2020-58272020-08-31
Oracle Linux version 7 (coredns)ELSA-2020-58272020-08-31
Oracle Linux version 7 (coredns)ELSA-2020-58282020-08-31
Oracle Linux version 7 (cri-o)ELSA-2020-58272020-08-31
Oracle Linux version 7 (cri-o)ELSA-2020-58282020-08-31
Oracle Linux version 7 (cri-tools)ELSA-2020-58272020-08-31
Oracle Linux version 7 (cri-tools)ELSA-2020-58282020-08-31
Oracle Linux version 7 (docker-cli)ELSA-2020-58232020-08-24
Oracle Linux version 7 (docker-engine)ELSA-2020-58232020-08-24
Oracle Linux version 7 (etcd)ELSA-2020-58272020-08-31
Oracle Linux version 7 (etcd)ELSA-2020-58282020-08-31
Oracle Linux version 7 (flannel)ELSA-2020-58272020-08-31
Oracle Linux version 7 (flannel)ELSA-2020-58282020-08-31
Oracle Linux version 7 (grafana)ELSA-2020-58272020-08-31
Oracle Linux version 7 (helm)ELSA-2020-58272020-08-31
Oracle Linux version 7 (istio)ELSA-2020-58272020-08-31
Oracle Linux version 7 (kata)ELSA-2020-58272020-08-31
Oracle Linux version 7 (kata)ELSA-2020-58282020-08-31
Oracle Linux version 7 (kata-agent)ELSA-2020-58272020-08-31
Oracle Linux version 7 (kata-agent)ELSA-2020-58282020-08-31
Oracle Linux version 7 (kata-image)ELSA-2020-58272020-08-31
Oracle Linux version 7 (kata-image)ELSA-2020-58282020-08-31
Oracle Linux version 7 (kata-ksm-throttler)ELSA-2020-58272020-08-31
Oracle Linux version 7 (kata-ksm-throttler)ELSA-2020-58282020-08-31
Oracle Linux version 7 (kata-proxy)ELSA-2020-58272020-08-31
Oracle Linux version 7 (kata-proxy)ELSA-2020-58282020-08-31
Oracle Linux version 7 (kata-runtime)ELSA-2020-58272020-08-31
Oracle Linux version 7 (kata-runtime)ELSA-2020-58282020-08-31
Oracle Linux version 7 (kata-shim)ELSA-2020-58272020-08-31
Oracle Linux version 7 (kata-shim)ELSA-2020-58282020-08-31
Oracle Linux version 7 (kubeadm-ha-setup)ELSA-2020-58252020-08-24
Oracle Linux version 7 (kubernetes)ELSA-2020-58252020-08-24
Oracle Linux version 7 (kubernetes)ELSA-2020-58272020-08-31
Oracle Linux version 7 (kubernetes)ELSA-2020-58282020-08-31
Oracle Linux version 7 (kubernetes-cni)ELSA-2020-58252020-08-24
Oracle Linux version 7 (kubernetes-cni)ELSA-2020-58272020-08-31
Oracle Linux version 7 (kubernetes-cni)ELSA-2020-58282020-08-31
Oracle Linux version 7 (kubernetes-cni-plugins)ELSA-2020-58252020-08-24
Oracle Linux version 7 (kubernetes-cni-plugins)ELSA-2020-58272020-08-31
Oracle Linux version 7 (kubernetes-cni-plugins)ELSA-2020-58282020-08-31
Oracle Linux version 7 (kubernetes-dashboard)ELSA-2020-58272020-08-31
Oracle Linux version 7 (kubernetes-dashboard)ELSA-2020-58282020-08-31
Oracle Linux version 7 (olcne)ELSA-2020-58272020-08-31
Oracle Linux version 7 (olcne)ELSA-2020-58282020-08-31
Oracle Linux version 7 (prometheus)ELSA-2020-58272020-08-31
Oracle Linux version 7 (yq)ELSA-2020-58272020-08-31
Oracle Linux version 7 (yq)ELSA-2020-58282020-08-31
Oracle Linux version 8 (delve)ELSA-2020-36652020-09-11
Oracle Linux version 8 (go-toolset)ELSA-2020-36652020-09-11
Oracle Linux version 8 (golang)ELSA-2020-36652020-09-11



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete