openSUSE-SU-2016:2536-1

See a problem?
Import Source
https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2016:2536-1.json
JSON Data
https://api.osv.dev/v1/vulns/openSUSE-SU-2016:2536-1
Related
Published
2016-10-14T09:45:15Z
Modified
2016-10-14T09:45:15Z
Summary
Security update to go1.4
Details

go1.4 was updated to fix the following vulnerabilities:

  • CVE-2016-5386: Remote attacker could have set the application's HTTP_PROXY environment variable via Proxy headers (boo#988487)
References

Affected packages

SUSE:Package Hub 12 / go1.4

Package

Name
go1.4
Purl
pkg:rpm/suse/go1.4&distro=SUSE%20Package%20Hub%2012

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.4.3-6.1

Ecosystem specific

{
    "binaries": [
        {
            "go1.4": "1.4.3-6.1",
            "go1.4-doc": "1.4.3-6.1"
        }
    ]
}