Advisories » MGASA-2022-0210

Updated golang packages fix security vulnerability

Publication date: 28 May 2022
Type: security
Affected Mageia releases : 8
CVE: CVE-2022-29526

Description

The syscall.Faccessat function checks whether the calling process can
access a file. Faccessat contains a bug where it checks a file’s group
permission bits if the process’s user is a member of the process’s group
rather than a member of the file’s group. (CVE-2022-29526)
                

References

SRPMS

8/core