CVE-2021-33198

In Go before 1.15.13 and 1.16.x before 1.16.5, there can be a panic for a large exponent to the math/big.Rat SetString or UnmarshalText method.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*
cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*

History

21 Nov 2024, 06:08

Type Values Removed Values Added
References () https://groups.google.com/g/golang-announce - Third Party Advisory () https://groups.google.com/g/golang-announce - Third Party Advisory
References () https://groups.google.com/g/golang-announce/c/RgCMkAEQjSI - Exploit, Patch, Third Party Advisory () https://groups.google.com/g/golang-announce/c/RgCMkAEQjSI - Exploit, Patch, Third Party Advisory
References () https://security.gentoo.org/glsa/202208-02 - Third Party Advisory () https://security.gentoo.org/glsa/202208-02 - Third Party Advisory

Information

Published : 2021-08-02 19:15

Updated : 2024-11-21 06:08


NVD link : CVE-2021-33198

Mitre link : CVE-2021-33198

CVE.ORG link : CVE-2021-33198


JSON object : View

Products Affected

golang

  • go