[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-OPENSUSE-SU-2018:4302-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:55:29.923Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":16,"duplicates":17,"related":18,"reserved_at":9,"published_at":20,"modified_at":21,"state":9,"summary":22,"references_raw":24,"kevs":49,"epss":9,"epss_history":50,"metrics":51,"affected":52},"OPENSUSE-SU-2018:4302-1","Security update for go\n\nThis update for go fixes the following issues:\n\n- golang: arbitrary command execution via VCS path (bsc#1081495, CVE-2018-7187)\n- Make profile.d/go.sh no longer set GOROOT=, in order to make switching\n  between versions no longer break. This ends up removing the need for go.sh\n  entirely (because GOPATH is also set automatically) (boo#1119634)\n- Fix a regression that broke go get for import path patterns containing '...'\n  (bsc#1119706)\n\nAdditionally, the package go1.10 has been added.\n\nThis update was imported from the SUSE:SLE-15:Update update project.",null,[],[],[],[14],{"_key":15},"CVE-2018-7187",[],[],[19],{"_key":15},"2018-12-29T10:20:00Z","2026-02-04T03:22:44.091197Z",{"cisa_kev":23,"cisa_ransomware":23,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[25,31,36,40,44],{"url":26,"sources":27,"tags":29},"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/PZCRXEXMCF6XFL7IRZ3SXSULVBU2CDJD/#PZCRXEXMCF6XFL7IRZ3SXSULVBU2CDJD",[28],"osv_suse",[30],"Advisory",{"url":32,"sources":33,"tags":34},"https://bugzilla.suse.com/1081495",[28],[35],"REPORT",{"url":37,"sources":38,"tags":39},"https://bugzilla.suse.com/1119634",[28],[35],{"url":41,"sources":42,"tags":43},"https://bugzilla.suse.com/1119706",[28],[35],{"url":45,"sources":46,"tags":47},"https://www.suse.com/security/cve/CVE-2018-7187",[28],[48],"WEB",[],[],[],[53,66,73],{"ecosystem":54,"name":55,"vendor":56,"product":57,"cpe_part":9,"purl_type":58,"purl_namespace":56,"purl_name":57,"source":9,"versions":59},"SUSE Linux Enterprise","go1.10","suse","go1.10&distro=SUSE Package Hub 15","rpm",[60],{"version":61,"is_range":62,"range_type":63,"version_start":9,"version_start_type":9,"version_end":64,"version_end_type":65,"fixed_in":9},"lt1_10_7_bp150_2_1",true,"ecosystem","1.10.7-bp150.2.1","excluding",{"ecosystem":54,"name":67,"vendor":56,"product":68,"cpe_part":9,"purl_type":58,"purl_namespace":56,"purl_name":68,"source":9,"versions":69},"go","go&distro=SUSE Package Hub 15",[70],{"version":71,"is_range":62,"range_type":63,"version_start":9,"version_start_type":9,"version_end":72,"version_end_type":65,"fixed_in":9},"lt1_10_4_bp150_2_3_1","1.10.4-bp150.2.3.1",{"ecosystem":54,"name":74,"vendor":56,"product":75,"cpe_part":9,"purl_type":58,"purl_namespace":56,"purl_name":75,"source":9,"versions":76},"golang-packaging","golang-packaging&distro=SUSE Package Hub 15",[77],{"version":78,"is_range":62,"range_type":63,"version_start":9,"version_start_type":9,"version_end":79,"version_end_type":65,"fixed_in":9},"lt15_0_11_bp150_3_3_1","15.0.11-bp150.3.3.1"]