VDB
RHSA-2020%3A5493
RHSA-2020%3A5493
PUBLISHED
CVSS 7.5 HIGH
Red Hat Security Advisory: go-toolset:rhel8 security update
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat:enterprise_linux:8::appstream | golang-bin | 0, 0 |
| Red Hat:enterprise_linux:8::appstream | delve | 0, 0 |
| Red Hat:enterprise_linux:8::appstream | delve-debuginfo | 0, 0 |
| Red Hat:enterprise_linux:8::appstream | golang-misc | 0, 0 |
| Red Hat:enterprise_linux:8::appstream | go-toolset | 0, 0 |
| Red Hat:enterprise_linux:8::appstream | golang | 0, 0 |
| Red Hat:enterprise_linux:8::appstream | golang-src | 0, 0 |
| Red Hat:enterprise_linux:8::appstream | golang-docs | 0, 0 |
| Red Hat:enterprise_linux:8::appstream | golang-race | 0, 0 |
| Red Hat:enterprise_linux:8::appstream | golang-tests | 0, 0 |
| Red Hat:enterprise_linux:8::appstream | delve-debugsource | 0, 0 |
Timeline
- Dec 15, 2020 CVE Published
- Apr 30, 2026 CVE Updated
- May 1, 2026 Distribution Patch
- May 1, 2026 Distribution Patch
- May 1, 2026 Security Advisory
- May 1, 2026 Security Advisory
- May 1, 2026 Security Advisory
- May 1, 2026 Security Advisory
- May 1, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2020:5493 advisory
- https://access.redhat.com/security/updates/classification/#moderate article
- https://access.redhat.com/documentation/en-us/red_hat_developer_tools/1/html/using_go_1.14.10_toolset article
- https://bugzilla.redhat.com/show_bug.cgi?id=1874857 report
- https://bugzilla.redhat.com/show_bug.cgi?id=1897635 report
- https://bugzilla.redhat.com/show_bug.cgi?id=1897643 report
- https://bugzilla.redhat.com/show_bug.cgi?id=1897646 report
- https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_5493.json advisory
- https://access.redhat.com/security/cve/CVE-2020-24553 report
- https://www.cve.org/CVERecord?id=CVE-2020-24553 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2020-24553 advisory
- https://groups.google.com/forum/#!topic/golang-announce/8wqlSbkLdPs article
- https://www.redteam-pentesting.de/en/advisories/rt-sa-2020-004/-inconsistent-behavior-of-gos-cgi-and-fastcgi-transport-may-lead-to-cross-site-scripting article
- https://access.redhat.com/security/cve/CVE-2020-28362 report
- https://www.cve.org/CVERecord?id=CVE-2020-28362 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2020-28362 advisory
- https://access.redhat.com/security/cve/CVE-2020-28366 report
- https://www.cve.org/CVERecord?id=CVE-2020-28366 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2020-28366 advisory
- https://groups.google.com/g/golang-announce/c/NpBGTTmKzpM/m/fLguyiM2CAAJ article
…and 3 more