Updated golang package fixes CVE-2016-3959
Publication date: 23 May 2016Modification date: 23 May 2016
Type: security
Affected Mageia releases : 5
CVE: CVE-2016-3959
Description
Updated golang packages fix security vulnerability: Go has an infinite loop in several big integer routines that makes Go programs vulnerable to remote denial of service attacks. Programs using HTTPS client authentication or the Go ssh server libraries are both exposed to this vulnerability (CVE-2016-3959).
References
SRPMS
5/core
- golang-1.6.2-7.mga5