Updated golang packages fix security vulnerability
Publication date: 02 Nov 2019Modification date: 02 Nov 2019
Type: security
Affected Mageia releases : 7
CVE: CVE-2019-17596
Description
Updated golang packages fix security vulnerability: Daniel Mandragona discovered that invalid DSA public keys can cause a panic in dsa.Verify(), resulting in denial of service (CVE-2019-17596).
References
SRPMS
7/core
- golang-1.12.11-1.mga7