Advisories ยป MGASA-2019-0310

Updated golang packages fix security vulnerability

Publication date: 02 Nov 2019
Type: security
Affected Mageia releases : 7
CVE: CVE-2019-17596

Description

Updated golang packages fix security vulnerability:

Daniel Mandragona discovered that invalid DSA public keys can cause a panic
in dsa.Verify(), resulting in denial of service (CVE-2019-17596).
                

References

SRPMS

7/core