FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

go -- decoding big.Float and big.Rat can panic

Affected packages
go118 < 1.18.5
go117 < 1.17.13

Details

VuXML ID 7f8d5435-125a-11ed-9a69-10c37b4ac2ea
Discovery 2022-07-14
Entry 2022-08-02

The Go project reports:

encoding/gob & math/big: decoding big.Float and big.Rat can panic

Decoding big.Float and big.Rat types can panic if the encoded message is too short.

References

CVE Name CVE-2022-32189
URL https://groups.google.com/g/golang-announce/c/YqYYG87xB10