VDB
RHSA-2024%3A4119
RHSA-2024%3A4119
PUBLISHED
CVSS 8.100000381469727 HIGH
A flaw was found in golang, where not all valid JavaScript white-space characters were considered white space. Due to this issue, templates containing white-space characters outside of the character set "\t\n\f\r\u0020\u2028\u2029" in JavaScript contexts that also contain actions may not be properly sanitized during execution.
Risk Scores
CVSS 3.1
8.100000381469727
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat | rhceph/keepalived-rhel8@sha256:d7a7306a478ede068442d2e550afb25997d07e7789ee2f42d0de28ad658725cc_ppc64le as a component of Red Hat Ceph Storage 5.3 Tools | rhceph/keepalived-rhel8@sha256:d7a7306a478ede068442d2e550afb25997d07e7789ee2f42d0de28ad658725cc_ppc64le |
| Red Hat | rhceph/rhceph-haproxy-rhel8@sha256:eb29356658ad65b020dfcaaee169fef501afbcb0cf4612c143fc5ec38829c578_ppc64le as a component of Red Hat Ceph Storage 5.3 Tools | rhceph/rhceph-haproxy-rhel8@sha256:eb29356658ad65b020dfcaaee169fef501afbcb0cf4612c143fc5ec38829c578_ppc64le |
| Red Hat | rhceph/rhceph-5-dashboard-rhel8@sha256:cb8fc50eb4bb7609338a48bdca64daf4bb779a88a4a77c40f90a5d3ed7449c3d_ppc64le as a component of Red Hat Ceph Storage 5.3 Tools | rhceph/rhceph-5-dashboard-rhel8@sha256:cb8fc50eb4bb7609338a48bdca64daf4bb779a88a4a77c40f90a5d3ed7449c3d_ppc64le |
| Red Hat | rhceph/rhceph-5-rhel8@sha256:008a14ab26285daa57be78f805fa6c306afc1e32c272e6793872d885f4c279e6_s390x as a component of Red Hat Ceph Storage 5.3 Tools | rhceph/rhceph-5-rhel8@sha256:008a14ab26285daa57be78f805fa6c306afc1e32c272e6793872d885f4c279e6_s390x |
| Red Hat | rhceph/rhceph-5-dashboard-rhel8@sha256:9e85ebc6bd674665b674e3779bd70db825d8bae0ef73f063d49db1a7f923cdc5_amd64 as a component of Red Hat Ceph Storage 5.3 Tools | rhceph/rhceph-5-dashboard-rhel8@sha256:9e85ebc6bd674665b674e3779bd70db825d8bae0ef73f063d49db1a7f923cdc5_amd64 |
| Red Hat | rhceph/rhceph-5-rhel8@sha256:3c192d212d04f82ed2837eaa17d0273a5520a83d37992b75e0895b5b5de47f83_ppc64le as a component of Red Hat Ceph Storage 5.3 Tools | * |
| Red Hat | rhceph/rhceph-haproxy-rhel8@sha256:ba0192053b43c5fc28b6273f25f3c4834ad37e4775d60662ea1279a1060b19f7_amd64 as a component of Red Hat Ceph Storage 5.3 Tools | rhceph/rhceph-haproxy-rhel8@sha256:ba0192053b43c5fc28b6273f25f3c4834ad37e4775d60662ea1279a1060b19f7_amd64 |
| Red Hat | rhceph/rhceph-haproxy-rhel8@sha256:087a07054c1126010e512d626ac177f4618f605e487e9a9c7d2e260f574bc9ad_s390x as a component of Red Hat Ceph Storage 5.3 Tools | rhceph/rhceph-haproxy-rhel8@sha256:087a07054c1126010e512d626ac177f4618f605e487e9a9c7d2e260f574bc9ad_s390x |
| Red Hat | rhceph/snmp-notifier-rhel8@sha256:d6a2c4fb376a48844ef8b8c0b1a05593eabce7c49c57fbc88a0c96ec172ff6fe_s390x as a component of Red Hat Ceph Storage 5.3 Tools | rhceph/snmp-notifier-rhel8@sha256:d6a2c4fb376a48844ef8b8c0b1a05593eabce7c49c57fbc88a0c96ec172ff6fe_s390x |
| Red Hat | rhceph/rhceph-5-dashboard-rhel8@sha256:03783e8b39467222b6bd555e446571f969ba1107b61566e13fa4b9fef3a97430_s390x as a component of Red Hat Ceph Storage 5.3 Tools | rhceph/rhceph-5-dashboard-rhel8@sha256:03783e8b39467222b6bd555e446571f969ba1107b61566e13fa4b9fef3a97430_s390x |
| Red Hat | rhceph/keepalived-rhel8@sha256:74771c06933519c95c043bafae50579949f7665a08bae94067242cbe122f0b2a_s390x as a component of Red Hat Ceph Storage 5.3 Tools | rhceph/keepalived-rhel8@sha256:74771c06933519c95c043bafae50579949f7665a08bae94067242cbe122f0b2a_s390x |
| Red Hat | rhceph/keepalived-rhel8@sha256:9320d6cd86c4854c303c1ff8bd5e7ea9402d57bb99305d3fa71777f3626074a6_amd64 as a component of Red Hat Ceph Storage 5.3 Tools | rhceph/keepalived-rhel8@sha256:9320d6cd86c4854c303c1ff8bd5e7ea9402d57bb99305d3fa71777f3626074a6_amd64 |
| Red Hat | rhceph/rhceph-5-rhel8@sha256:b12193ed871c1a7a755d257d3a962116cb6b4d8acfc93898faef56c389189c05_amd64 as a component of Red Hat Ceph Storage 5.3 Tools | rhceph/rhceph-5-rhel8@sha256:b12193ed871c1a7a755d257d3a962116cb6b4d8acfc93898faef56c389189c05_amd64 |
| Red Hat | rhceph/snmp-notifier-rhel8@sha256:1b5654619c4c25949563b561ba0b3a156b43c1d62a5ffa71524cdd0993add2e6_ppc64le as a component of Red Hat Ceph Storage 5.3 Tools | * |
| Red Hat | rhceph/snmp-notifier-rhel8@sha256:f4715ac64a43f3a654914f567c36e7179a3413b1c455be2e0dbe3d9bba89db70_amd64 as a component of Red Hat Ceph Storage 5.3 Tools | rhceph/snmp-notifier-rhel8@sha256:f4715ac64a43f3a654914f567c36e7179a3413b1c455be2e0dbe3d9bba89db70_amd64 |
Timeline
- Jun 26, 2024 CVE Published
- Apr 24, 2026 CVE Updated
- Apr 25, 2026 Distribution Patch
- Apr 25, 2026 Distribution Patch
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
References
- https://pkg.go.dev/vuln/GO-2023-1841 advisory
- https://access.redhat.com/errata/RHSA-2024:4119 advisory
- https://access.redhat.com/security/updates/classification/#important advisory
- https://access.redhat.com/security/cve/CVE-2023-29405 advisory
- https://access.redhat.com/security/cve/CVE-2023-29404 advisory
- https://access.redhat.com/security/cve/CVE-2023-29402 advisory
- https://access.redhat.com/security/cve/CVE-2023-24540 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2196027 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2217562 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2217565 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2217569 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2273325 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2293103 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2293104 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2293105 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=2293106 issue
- https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_4119.json advisory
- https://www.cve.org/CVERecord?id=CVE-2023-24540 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2023-24540 advisory
- https://go.dev/issue/59721 advisory
…and 16 more