[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-OPENSUSE-SU-2022:0724-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:55:29.923Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":20,"duplicates":21,"related":22,"reserved_at":9,"published_at":26,"modified_at":27,"state":9,"summary":28,"references_raw":30,"kevs":67,"epss":9,"epss_history":68,"metrics":69,"affected":70},"OPENSUSE-SU-2022:0724-1","Security update for go1.16\n\nThis update for go1.16 fixes the following issues:\n\n- CVE-2022-23806: Fixed incorrect returned value in crypto/elliptic IsOnCurve (bsc#1195838).\n- CVE-2022-23772: Fixed overflow in Rat.SetString in math/big can lead to uncontrolled memory consumption (bsc#1195835).\n- CVE-2022-23773: Fixed incorrect access control in cmd/go (bsc#1195834).\n\nThe following non-security bugs were fixed:\n\n- go#50977 crypto/elliptic: IsOnCurve returns true for invalid field elements\n- go#50700 math/big: Rat.SetString may consume large amount of RAM and crash\n- go#50686 cmd/go: do not treat branches with semantic-version names as releases\n- go#50866 cmd/compile: incorrect use of CMN on arm64\n- go#50832 runtime/race: NoRaceMutexPureHappensBefore failures\n- go#50811 cmd/go: remove bitbucket VCS probing\n- go#50780 runtime: incorrect frame information in traceback traversal may hang the process.\n- go#50721 debug/pe: reading debug_info section of PE files that use the DWARF5 form DW_FORM_line_strp causes error\n- go#50682 cmd/compile: MOVWreg missing sign-extension following a Copy from a floating-point LoadReg\n- go#50645 testing: surprising interaction of subtests with TempDir\n- go#50585 net/http/httptest: add fipsonly compliant certificate in for NewTLSServer(), for dev.boringcrypto branch\n- go#50245 runtime: intermittent os/exec.Command.Start() Hang on Darwin in Presence of 'plugin' Package\n",null,[],[],[],[14,16,18],{"_key":15},"CVE-2022-23772",{"_key":17},"CVE-2022-23773",{"_key":19},"CVE-2022-23806",[],[],[23,24,25],{"_key":15},{"_key":17},{"_key":19},"2022-03-04T09:34:13Z","2026-02-04T04:01:03.227104Z",{"cisa_kev":29,"cisa_ransomware":29,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[31,37,42,46,50,54,59,63],{"url":32,"sources":33,"tags":35},"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/IMRYQV73OUYCKMEO4GSE5KGQ7EEQYJHV/",[34],"osv_opensuse",[36],"Advisory",{"url":38,"sources":39,"tags":40},"https://bugzilla.suse.com/1182345",[34],[41],"REPORT",{"url":43,"sources":44,"tags":45},"https://bugzilla.suse.com/1195834",[34],[41],{"url":47,"sources":48,"tags":49},"https://bugzilla.suse.com/1195835",[34],[41],{"url":51,"sources":52,"tags":53},"https://bugzilla.suse.com/1195838",[34],[41],{"url":55,"sources":56,"tags":57},"https://www.suse.com/security/cve/CVE-2022-23772",[34],[58],"WEB",{"url":60,"sources":61,"tags":62},"https://www.suse.com/security/cve/CVE-2022-23773",[34],[58],{"url":64,"sources":65,"tags":66},"https://www.suse.com/security/cve/CVE-2022-23806",[34],[58],[],[],[],[71],{"ecosystem":72,"name":73,"vendor":74,"product":75,"cpe_part":9,"purl_type":76,"purl_namespace":74,"purl_name":75,"source":9,"versions":77},"openSUSE","go1.16","opensuse","go1.16&distro=openSUSE Leap 15.3","rpm",[78],{"version":79,"is_range":80,"range_type":81,"version_start":9,"version_start_type":9,"version_end":82,"version_end_type":83,"fixed_in":9},"lt1_16_14_1_43_1",true,"ecosystem","1.16.14-1.43.1","excluding"]