CVE-2014-7189
07.10.2014, 14:55
crpyto/tls in Go 1.1 before 1.3.2, when SessionTicketsDisabled is enabled, allows man-in-the-middle attackers to spoof clients via unspecified vectors.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| golang | go | 1.1 |
| golang | go | 1.1.1 |
| golang | go | 1.1.2 |
| golang | go | 1.2 |
| golang | go | 1.2.1 |
| golang | go | 1.2.2 |
| golang | go | 1.3 |
| golang | go | 1.3.1 |
𝑥
= Vulnerable software versions
Ubuntu Releases
openSUSE / SLES Releases
openSUSE Product | |||||||
|---|---|---|---|---|---|---|---|
| go |
| ||||||
| go-doc |
| ||||||
| go-race |
|
Amazon Linux Releases
Amazon Package | |||
|---|---|---|---|
| emacs-golang |
| ||
| golang |
| ||
| golang-pkg-bin-linux-386 |
| ||
| golang-pkg-bin-linux-amd64 |
| ||
| golang-pkg-darwin-386 |
| ||
| golang-pkg-darwin-amd64 |
| ||
| golang-pkg-freebsd-386 |
| ||
| golang-pkg-freebsd-amd64 |
| ||
| golang-pkg-freebsd-arm |
| ||
| golang-pkg-linux-386 |
| ||
| golang-pkg-linux-amd64 |
| ||
| golang-pkg-linux-arm |
| ||
| golang-pkg-netbsd-386 |
| ||
| golang-pkg-netbsd-amd64 |
| ||
| golang-pkg-netbsd-arm |
| ||
| golang-pkg-openbsd-386 |
| ||
| golang-pkg-openbsd-amd64 |
| ||
| golang-pkg-plan9-386 |
| ||
| golang-pkg-plan9-amd64 |
| ||
| golang-pkg-windows-386 |
| ||
| golang-pkg-windows-amd64 |
| ||
| golang-src |
| ||
| golang-vim |
|
Common Weakness Enumeration
References