Overview

File _patchinfo of Package patchinfo.18708

<patchinfo incident="18708">
  <issue tracker="cve" id="2021-27918"/>
  <issue tracker="bnc" id="1175132">go1.15 release tracking</issue>
  <issue tracker="bnc" id="1183333">VUL-0: CVE-2021-27918: go1.15,go1.16: go: encoding/xml: infinite loop when using `xml.NewTokenDecoder` with a custom `TokenReader`</issue>
  <packager>jfkw</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for go1.15</summary>
  <description>This update for go1.15 fixes the following issues:

- go1.15.10 (released 2021-03-11) (bsc#1175132)
- go1.15.9 (released 2021-03-10) (bsc#1175132)
  - CVE-2021-27918: Fixed an infinite loop when using xml.NewTokenDecoder with a custom TokenReader (bsc#1183333).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places