RHBA-2023:7648MediumCVSS 7.5
Red Hat Bug Fix Advisory: MTV 2.5.3 Images
🔗 CVE IDs covered (5)
📋 Description
CVE-2023-39318 — golang: html/template: improper handling of HTML-like comments within script contexts CVE-2023-39319 — golang: html/template: improper handling of special tags within script contexts CVE-2023-39321 — golang: crypto/tls: panic when processing post-handshake message on QUIC connections CVE-2023-39322 — golang: crypto/tls: lack of a limit on buffered post-handshake CVE-2023-45142 — opentelemetry: DoS vulnerability in otelhttp
🔗 References (11)
- selfhttps://access.redhat.com/errata/RHBA-2023:7648
- externalhttps://issues.redhat.com/browse/MTV-698
- externalhttps://issues.redhat.com/browse/MTV-699
- externalhttps://issues.redhat.com/browse/MTV-714
- externalhttps://issues.redhat.com/browse/MTV-783
- externalhttps://issues.redhat.com/browse/MTV-803
- externalhttps://issues.redhat.com/browse/MTV-811
- externalhttps://issues.redhat.com/browse/MTV-812
- externalhttps://issues.redhat.com/browse/MTV-818
- externalhttps://issues.redhat.com/browse/MTV-830
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2023/rhba-2023_7648.json