CVE-2024-1394 | golang-fips openssl/openssl/rsa.go pkey/ctx memory leak

Inserito da Angelo Barbosa | Mar 20, 2024 | CVE

A vulnerability was found in golang-fips. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file openssl/openssl/rsa.go. The manipulation of the argument pkey/ctx leads to memory leak.

This vulnerability is known as CVE-2024-1394. Access to the local network is required for this attack to succeed. There is no exploit available.

CVE-2024-1394 | golang-fips openssl/openssl/rsa.go pkey​/ctx memory leak

Post correlati

CVE-2023-2919 | Tutor LMS Plugin up to 2.7.4 on WordPress addon_enable_disable cross-site request forgery

CVE-2024-1567 | Royal Elementor Addons and Templates Plugin up to 1.3.94 on WordPress unrestricted upload

CVE-2023-45735 | Westermo Lynx 206-F2G 4.24 code injection (icsa-24-023-04)

CVE-2023-48760 | Crocoblock JetBlocks for Elementor Plugin on WordPress authorization

CVE-2024-1394 | golang-fips openssl/openssl/rsa.go pkey/ctx memory leak