支持本站 — 捐款将帮助我们持续运营

目标: 1000 元,已筹: 1000

100.0%
立即捐款
获取后续新漏洞提醒登录后订阅
一、 漏洞 CVE-2024-1394 基础信息
漏洞信息
对漏洞内容有疑问?看看神龙的深度分析是否有帮助!
查看神龙十问 ↗

尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。

Vulnerability Title
Golang-fips/openssl: memory leaks in code encrypting and decrypting rsa payloads
来源: 美国国家漏洞数据库 NVD
Vulnerability Description
A memory leak flaw was found in Golang in the RSA encrypting/decrypting code, which might lead to a resource exhaustion vulnerability using attacker-controlled inputs​. The memory leak happens in github.com/golang-fips/openssl/openssl/rsa.go#L113. The objects leaked are pkey​ and ctx​. That function uses named return parameters to free pkey​ and ctx​ if there is an error initializing the context or setting the different properties. All return statements related to error cases follow the "return nil, nil, fail(...)" pattern, meaning that pkey​ and ctx​ will be nil inside the deferred function that should free them.
来源: 美国国家漏洞数据库 NVD
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
来源: 美国国家漏洞数据库 NVD
Vulnerability Type
在移除最后引用时对内存的释放不恰当(内存泄露)
来源: 美国国家漏洞数据库 NVD
Vulnerability Title
Google Golang 安全漏洞
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Description
Google Golang是美国谷歌(Google)公司的一种静态强类型、编译型语言。Go的语法接近C语言,但对于变量的声明有所不同。Go支持垃圾回收功能。Go的并行模型是以东尼·霍尔的通信顺序进程(CSP)为基础,采取类似模型的其他语言包括Occam和Limbo,但它也具有Pi运算的特征,比如通道传输。在1.8版本中开放插件(Plugin)的支持,这意味着现在能从Go中动态加载部分函数。 Google Golang 存在安全漏洞,该漏洞源于RSA 加密/解密代码中发现内存泄漏缺陷,这可能会导致资源耗尽。
来源: 中国国家信息安全漏洞库 CNNVD
CVSS Information
N/A
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Type
N/A
来源: 中国国家信息安全漏洞库 CNNVD
受影响产品
厂商产品影响版本CPE订阅
Red HatRed Hat Ansible Automation Platform 2.4 for RHEL 8 0:1.4.5-1.el8ap ~ * cpe:/a:redhat:ansible_automation_platform:2.4::el8
Red HatRed Hat Ansible Automation Platform 2.4 for RHEL 9 0:1.4.5-1.el9ap ~ * cpe:/a:redhat:ansible_automation_platform:2.4::el8
Red HatRed Hat Developer Tools 0:1.19.13-6.el7_9 ~ * cpe:/a:redhat:devtools:2023::el7
Red HatRed Hat Enterprise Linux 8 8090020240313170136.26eb71ac ~ * cpe:/a:redhat:enterprise_linux:8::appstream
Red HatRed Hat Enterprise Linux 8 0:5.1.1-2.el8_9 ~ * cpe:/a:redhat:enterprise_linux:8::appstream
Red HatRed Hat Enterprise Linux 8 0:9.2.10-8.el8_9 ~ * cpe:/a:redhat:enterprise_linux:8::appstream
Red HatRed Hat Enterprise Linux 8 0:9.2.10-16.el8_10 ~ * cpe:/a:redhat:enterprise_linux:8::appstream
Red HatRed Hat Enterprise Linux 8 8100020240808093819.afee755d ~ * cpe:/a:redhat:enterprise_linux:8::appstream
Red HatRed Hat Enterprise Linux 8 0:101-2.el8_10 ~ * cpe:/a:redhat:enterprise_linux:8::appstream
Red HatRed Hat Enterprise Linux 9 0:1.20.12-2.el9_3 ~ * cpe:/a:redhat:enterprise_linux:9::appstream
Red HatRed Hat Enterprise Linux 9 0:9.2.10-8.el9_3 ~ * cpe:/a:redhat:enterprise_linux:9::appstream
Red HatRed Hat Enterprise Linux 9 0:5.1.1-2.el9_3 ~ * cpe:/a:redhat:enterprise_linux:9::appstream
Red HatRed Hat Enterprise Linux 9 0:1.21.9-2.el9_4 ~ * cpe:/a:redhat:enterprise_linux:9::appstream
Red HatRed Hat Enterprise Linux 9 0:9.2.10-16.el9_4 ~ * cpe:/a:redhat:enterprise_linux:9::appstream
Red HatRed Hat Enterprise Linux 9 0:5.1.1-2.el9_4 ~ * cpe:/a:redhat:enterprise_linux:9::appstream
Red HatRed Hat Enterprise Linux 9 2:1.33.7-3.el9_4 ~ * cpe:/a:redhat:enterprise_linux:9::appstream
Red HatRed Hat Enterprise Linux 9 4:4.9.4-5.el9_4 ~ * cpe:/a:redhat:enterprise_linux:9::appstream
Red HatRed Hat Enterprise Linux 9 6:0.7.3-4.el9_4 ~ * cpe:/a:redhat:enterprise_linux:9::appstream
Red HatRed Hat Enterprise Linux 9 2:1.14.3-3.el9_4 ~ * cpe:/a:redhat:enterprise_linux:9::appstream
Red HatRed Hat Enterprise Linux 9 1:1.4.0-4.el9_4 ~ * cpe:/a:redhat:enterprise_linux:9::appstream
Red HatRed Hat Enterprise Linux 9 4:1.1.12-3.el9_4 ~ * cpe:/a:redhat:enterprise_linux:9::appstream
Red HatRed Hat Enterprise Linux 9 0:132-1.el9 ~ * cpe:/a:redhat:enterprise_linux:9::appstream
Red HatRed Hat Enterprise Linux 9.0 Update Services for SAP Solutions 2:4.2.0-4.el9_0 ~ * cpe:/a:redhat:rhel_e4s:9.0::appstream
Red HatRed Hat Enterprise Linux 9.0 Update Services for SAP Solutions 1:1.0.1-6.el9_0 ~ * cpe:/a:redhat:rhel_e4s:9.0::appstream
Red HatRed Hat Enterprise Linux 9.2 Extended Update Support 0:1.19.13-7.el9_2 ~ * cpe:/a:redhat:rhel_eus:9.2::appstream
Red HatRed Hat Enterprise Linux 9.2 Extended Update Support 2:4.4.1-20.el9_2 ~ * cpe:/a:redhat:rhel_eus:9.2::appstream
Red HatRed Hat OpenShift Container Platform 4.12 1:1.23.4-5.2.rhaos4.12.el8 ~ * cpe:/a:redhat:openshift:4.12::el9
Red HatRed Hat OpenShift Container Platform 4.12 0:0.16.0-2.2.rhaos4.12.el8 ~ * cpe:/a:redhat:openshift:4.12::el9
Red HatRed Hat OpenShift Container Platform 4.12 1:1.4.0-1.1.rhaos4.12.el8 ~ * cpe:/a:redhat:openshift:4.12::el9
Red HatRed Hat OpenShift Container Platform 4.12 0:1.25.3-5.2.rhaos4.12.git44a2cb2.el9 ~ * cpe:/a:redhat:openshift:4.12::el9
Red HatRed Hat OpenShift Container Platform 4.12 0:1.25.0-2.2.el8 ~ * cpe:/a:redhat:openshift:4.12::el9
Red HatRed Hat OpenShift Container Platform 4.12 0:2.14.0-5.2.rhaos4.12.el9 ~ * cpe:/a:redhat:openshift:4.12::el9
Red HatRed Hat OpenShift Container Platform 4.12 0:4.12.0-202403251017.p0.gd4c9e3c.assembly.stream.el8 ~ * cpe:/a:redhat:openshift:4.12::el9
Red HatRed Hat OpenShift Container Platform 4.12 3:4.2.0-7.2.rhaos4.12.el9 ~ * cpe:/a:redhat:openshift:4.12::el9
Red HatRed Hat OpenShift Container Platform 4.12 3:1.1.6-5.2.rhaos4.12.el8 ~ * cpe:/a:redhat:openshift:4.12::el9
Red HatRed Hat OpenShift Container Platform 4.12 2:1.9.4-3.2.rhaos4.12.el8 ~ * cpe:/a:redhat:openshift:4.12::el9
Red HatRed Hat OpenShift Container Platform 4.13 1:1.29.1-2.2.rhaos4.13.el8 ~ * cpe:/a:redhat:openshift:4.13::el8
Red HatRed Hat OpenShift Container Platform 4.13 1:1.4.0-1.1.rhaos4.13.el8 ~ * cpe:/a:redhat:openshift:4.13::el8
Red HatRed Hat OpenShift Container Platform 4.13 0:1.26.5-11.1.rhaos4.13.git919cc6e.el8 ~ * cpe:/a:redhat:openshift:4.13::el8
Red HatRed Hat OpenShift Container Platform 4.13 0:1.26.0-4.1.el8 ~ * cpe:/a:redhat:openshift:4.13::el8
Red HatRed Hat OpenShift Container Platform 4.13 0:2.15.0-7.1.rhaos4.13.el9 ~ * cpe:/a:redhat:openshift:4.13::el8
Red HatRed Hat OpenShift Container Platform 4.13 0:4.13.0-202404020737.p0.gd192e90.assembly.stream.el8 ~ * cpe:/a:redhat:openshift:4.13::el8
Red HatRed Hat OpenShift Container Platform 4.13 3:4.4.1-5.2.rhaos4.13.el8 ~ * cpe:/a:redhat:openshift:4.13::el8
Red HatRed Hat OpenShift Container Platform 4.13 4:1.1.12-1.1.rhaos4.13.el8 ~ * cpe:/a:redhat:openshift:4.13::el8
Red HatRed Hat OpenShift Container Platform 4.13 2:1.11.2-2.2.rhaos4.13.el8 ~ * cpe:/a:redhat:openshift:4.13::el8
Red HatRed Hat OpenShift Container Platform 4.14 0:0.19.0-1.3.rhaos4.14.el8 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 1:1.4.0-1.2.rhaos4.14.el8 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 0:1.27.4-6.1.rhaos4.14.gitd09e4c0.el8 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 0:1.27.0-3.1.el8 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 0:2.16.2-2.1.rhaos4.14.el9 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 0:4.14.0-202403261640.p0.gf7b14a9.assembly.stream.el8 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 0:4.14.0-202403251040.p0.g607e2dd.assembly.stream.el8 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 3:4.4.1-11.3.rhaos4.14.el8 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 2:1.11.2-10.3.rhaos4.14.el8 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 1:1.29.1-10.4.rhaos4.14.el8 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 0:0.19.0-1.4.rhaos4.14.el8 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 3:2.1.7-3.4.rhaos4.14.el8 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 1:1.4.0-1.3.rhaos4.14.el8 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 0:1.27.4-7.2.rhaos4.14.git082c52f.el8 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 0:1.27.0-3.2.el8 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 0:2.16.2-2.2.rhaos4.14.el9 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 0:4.14.0-202404160939.p0.g7bee54d.assembly.stream.el8 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 0:4.14.0-202404151639.p0.gd2acdd5.assembly.stream.el8 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 0:4.14.0-202404151639.p0.g81558cc.assembly.stream.el8 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 0:4.14.0-202404151639.p0.gf7b14a9.assembly.stream.el8 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 0:4.14.0-202404151639.p0.g8926a29.assembly.stream.el8 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 0:4.14.0-202404151639.p0.g607e2dd.assembly.stream.el8 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 3:4.4.1-11.4.rhaos4.14.el8 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 4:1.1.12-1.2.rhaos4.14.el8 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 2:1.11.2-10.4.rhaos4.14.el8 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.14 0:4.14.19-202403280926.p0.gc1f8861.assembly.4.14.19.el9 ~ * cpe:/a:redhat:openshift:4.14::el9
Red HatRed Hat OpenShift Container Platform 4.14 414.92.202407300859-0 ~ * cpe:/a:redhat:openshift:4.14::el8
Red HatRed Hat OpenShift Container Platform 4.15 1:1.29.1-20.3.rhaos4.15.el8 ~ * cpe:/a:redhat:openshift:4.15::el9
Red HatRed Hat OpenShift Container Platform 4.15 0:0.20.0-1.1.rhaos4.15.el8 ~ * cpe:/a:redhat:openshift:4.15::el9
Red HatRed Hat OpenShift Container Platform 4.15 1:1.4.0-1.2.rhaos4.15.el8 ~ * cpe:/a:redhat:openshift:4.15::el9
Red HatRed Hat OpenShift Container Platform 4.15 0:1.28.4-8.rhaos4.15.git24f50b9.el8 ~ * cpe:/a:redhat:openshift:4.15::el9
Red HatRed Hat OpenShift Container Platform 4.15 0:1.28.0-3.1.el8 ~ * cpe:/a:redhat:openshift:4.15::el9
Red HatRed Hat OpenShift Container Platform 4.15 0:2.16.2-2.1.rhaos4.15.el9 ~ * cpe:/a:redhat:openshift:4.15::el9
Red HatRed Hat OpenShift Container Platform 4.15 0:4.15.0-202403211240.p0.g62c4d45.assembly.stream.el8 ~ * cpe:/a:redhat:openshift:4.15::el9
Red HatRed Hat OpenShift Container Platform 4.15 0:4.15.0-202403211549.p0.g2e3cca1.assembly.stream.el8 ~ * cpe:/a:redhat:openshift:4.15::el9
Red HatRed Hat OpenShift Container Platform 4.15 3:4.4.1-21.1.rhaos4.15.el8 ~ * cpe:/a:redhat:openshift:4.15::el9
Red HatRed Hat OpenShift Container Platform 4.15 4:1.1.12-1.1.rhaos4.15.el8 ~ * cpe:/a:redhat:openshift:4.15::el9
Red HatRed Hat OpenShift Container Platform 4.15 2:1.11.2-21.2.rhaos4.15.el8 ~ * cpe:/a:redhat:openshift:4.15::el9
Red HatRed Hat OpenShift Container Platform 4.15 0:4.15.6-202403280951.p0.g94b1c2a.assembly.4.15.6.el9 ~ * cpe:/a:redhat:openshift:4.15::el9
Red HatRed Hat OpenShift Container Platform 4.15 415.92.202407191425-0 ~ * cpe:/a:redhat:openshift:4.15::el9
Red HatRed Hat OpenStack Platform 16.2 0:3.3.23-16.el8ost ~ * cpe:/a:redhat:openstack:16.2::el8
Red HatRed Hat OpenStack Platform 17.1 for RHEL 8 0:0.2.1-3.el8ost ~ * cpe:/a:redhat:openstack:17.1::el8
Red HatRed Hat OpenStack Platform 17.1 for RHEL 9 0:3.4.26-8.el9ost ~ * cpe:/a:redhat:openstack:17.1::el9
Red HatRed Hat OpenStack Platform 17.1 for RHEL 9 0:0.2.1-3.el9ost ~ * cpe:/a:redhat:openstack:17.1::el9
Red HatRHODF-4.16-RHEL-9 v4.16.0-137 ~ * cpe:/a:redhat:openshift_data_foundation:4.16::el9
Red HatRHODF-4.16-RHEL-9 v4.16.0-38 ~ * cpe:/a:redhat:openshift_data_foundation:4.16::el9
Red HatNBDE Tang Server-cpe:/a:redhat:network_bound_disk_encryption_tang:1
Red HatOpenShift Developer Tools and Services-cpe:/a:redhat:ocp_tools
Red HatOpenShift Developer Tools and Services-cpe:/a:redhat:ocp_tools
Red HatOpenShift Pipelines-cpe:/a:redhat:openshift_pipelines:1
Red HatOpenShift Serverless-cpe:/a:redhat:serverless:1
Red HatRed Hat Ansible Automation Platform 1.2-cpe:/a:redhat:ansible_automation_platform
Red HatRed Hat Ansible Automation Platform 1.2-cpe:/a:redhat:ansible_automation_platform
Red HatRed Hat Certification for Red Hat Enterprise Linux 8-cpe:/a:redhat:certifications:1::el8
Red HatRed Hat Certification Program for Red Hat Enterprise Linux 9-cpe:/a:redhat:certifications:9
Red HatRed Hat Enterprise Linux 7-cpe:/o:redhat:enterprise_linux:7
Red HatRed Hat Enterprise Linux 7-cpe:/o:redhat:enterprise_linux:7
Red HatRed Hat Enterprise Linux 7-cpe:/o:redhat:enterprise_linux:7
Red HatRed Hat Enterprise Linux 7-cpe:/o:redhat:enterprise_linux:7
Red HatRed Hat Enterprise Linux 7-cpe:/o:redhat:enterprise_linux:7
Red HatRed Hat Enterprise Linux 7-cpe:/o:redhat:enterprise_linux:7
Red HatRed Hat Enterprise Linux 8-cpe:/o:redhat:enterprise_linux:8
Red HatRed Hat Enterprise Linux 8-cpe:/o:redhat:enterprise_linux:8
Red HatRed Hat Enterprise Linux 8-cpe:/o:redhat:enterprise_linux:8
Red HatRed Hat Enterprise Linux 8-cpe:/o:redhat:enterprise_linux:8
Red HatRed Hat Enterprise Linux 8-cpe:/o:redhat:enterprise_linux:8
Red HatRed Hat Enterprise Linux 8-cpe:/o:redhat:enterprise_linux:8
Red HatRed Hat Enterprise Linux 8-cpe:/o:redhat:enterprise_linux:8
Red HatRed Hat Enterprise Linux 8-cpe:/o:redhat:enterprise_linux:8
Red HatRed Hat Enterprise Linux 8-cpe:/o:redhat:enterprise_linux:8
Red HatRed Hat Enterprise Linux 8-cpe:/o:redhat:enterprise_linux:8
Red HatRed Hat Enterprise Linux 9-cpe:/o:redhat:enterprise_linux:9
Red HatRed Hat Enterprise Linux 9-cpe:/o:redhat:enterprise_linux:9
Red HatRed Hat Enterprise Linux 9-cpe:/o:redhat:enterprise_linux:9
Red HatRed Hat Enterprise Linux 9-cpe:/o:redhat:enterprise_linux:9
Red HatRed Hat Enterprise Linux 9-cpe:/o:redhat:enterprise_linux:9
Red HatRed Hat Enterprise Linux 9-cpe:/o:redhat:enterprise_linux:9
Red HatRed Hat OpenShift Container Platform 4-cpe:/a:redhat:openshift:4
Red HatRed Hat OpenShift Container Platform 4-cpe:/a:redhat:openshift:4
Red HatRed Hat OpenShift Container Platform 4-cpe:/a:redhat:openshift:4
Red HatRed Hat OpenShift Container Platform 4-cpe:/a:redhat:openshift:4
Red HatRed Hat OpenShift Container Platform 4-cpe:/a:redhat:openshift:4
Red HatRed Hat OpenShift Container Platform 4-cpe:/a:redhat:openshift:4
Red HatRed Hat OpenShift Container Platform 4-cpe:/a:redhat:openshift:4
Red HatRed Hat Openshift Container Storage 4-cpe:/a:redhat:openshift_container_storage:4
Red HatRed Hat OpenShift Dev Spaces-cpe:/a:redhat:openshift_devspaces:3
Red HatRed Hat OpenShift GitOps-cpe:/a:redhat:openshift_gitops:1
Red HatRed Hat OpenShift on AWS-cpe:/a:redhat:openshift_service_on_aws:1
Red HatRed Hat OpenShift Virtualization 4-cpe:/a:redhat:container_native_virtualization:4
Red HatRed Hat OpenStack Platform 16.1-cpe:/a:redhat:openstack:16.1
Red HatRed Hat OpenStack Platform 16.1-cpe:/a:redhat:openstack:16.1
Red HatRed Hat OpenStack Platform 16.1-cpe:/a:redhat:openstack:16.1
Red HatRed Hat OpenStack Platform 16.2-cpe:/a:redhat:openstack:16.2
Red HatRed Hat OpenStack Platform 16.2-cpe:/a:redhat:openstack:16.2
Red HatRed Hat OpenStack Platform 16.2-cpe:/a:redhat:openstack:16.2
Red HatRed Hat OpenStack Platform 17.1-cpe:/a:redhat:openstack:17.1
Red HatRed Hat OpenStack Platform 17.1-cpe:/a:redhat:openstack:17.1
Red HatRed Hat OpenStack Platform 17.1-cpe:/a:redhat:openstack:17.1
Red HatRed Hat OpenStack Platform 18.0-cpe:/a:redhat:openstack:18.0
Red HatRed Hat Service Interconnect 1-cpe:/a:redhat:service_interconnect:1
Red HatRed Hat Service Interconnect 1-cpe:/a:redhat:service_interconnect:1
Red HatRed Hat Service Interconnect 1-cpe:/a:redhat:service_interconnect:1
Red HatRed Hat Software Collections-cpe:/a:redhat:rhel_software_collections:3
Red HatRed Hat Storage 3-cpe:/a:redhat:storage:3
二、漏洞 CVE-2024-1394 的公开POC
#POC 描述源链接神龙链接
AI 生成 POC高级

未找到公开 POC。

登录以生成 AI POC
三、漏洞 CVE-2024-1394 的情报信息
Please 登录 to view more intelligence information
四、漏洞 CVE-2024-1394 的评论

暂无评论

发表评论