{ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2021-34558", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "The crypto/tls package of Go through 1.16.5 does not properly assert that the type of public key in an X.509 certificate matches the expected type when doing a RSA based key exchange, allowing a malicious TLS server to cause a TLS client to panic." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "url": "https://groups.google.com/g/golang-announce", "refsource": "MISC", "name": "https://groups.google.com/g/golang-announce" }, { "url": "https://golang.org/doc/devel/release#go1.16.minor", "refsource": "MISC", "name": "https://golang.org/doc/devel/release#go1.16.minor" }, { "refsource": "FEDORA", "name": "FEDORA-2021-25c0011e78", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D7FRFM7WWR2JCT6NORQ7AO6B453OMI3I/" }, { "refsource": "FEDORA", "name": "FEDORA-2021-1bfb61f77c", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3BA7MFVXRBEKRTLSLYDICTYCGEMK2HZ7/" }, { "refsource": "FEDORA", "name": "FEDORA-2021-3a55403080", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JYIUSR4YP52PWG7YE7AA3DZ5OSURNFJB/" }, { "refsource": "FEDORA", "name": "FEDORA-2021-47d259d3cf", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WXJ2MVMAHOIGRH37ZSFYC4EVWLJFL2EQ/" }, { "refsource": "FEDORA", "name": "FEDORA-2021-6ac9b98f9e", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LBMLUQMN6XRKPVOI5XFFBP4XSR7RNTYR/" }, { "refsource": "FEDORA", "name": "FEDORA-2021-07e4d20196", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3XBQUFVI5TMV4KMKI7GKA223LHGPQISE/" }, { "refsource": "FEDORA", "name": "FEDORA-2021-ffa749f7f7", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6BTC3JQUASFN5U2XA4UZIGAPZQBD5JSS/" }, { "refsource": "FEDORA", "name": "FEDORA-2021-54f88bebd4", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ITRXPCHUCJGXCX2CUEPKZRRTB27GG4ZB/" }, { "refsource": "FEDORA", "name": "FEDORA-2021-c35235c250", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NLOGBB7XBBRB3J5FDPW5KWHSH7IRF64W/" }, { "url": "https://www.oracle.com/security-alerts/cpuoct2021.html", "refsource": "MISC", "name": "https://www.oracle.com/security-alerts/cpuoct2021.html" }, { "refsource": "MISC", "name": "https://groups.google.com/g/golang-announce/c/n9FxMelZGAQ", "url": "https://groups.google.com/g/golang-announce/c/n9FxMelZGAQ" }, { "refsource": "CONFIRM", "name": "https://security.netapp.com/advisory/ntap-20210813-0005/", "url": "https://security.netapp.com/advisory/ntap-20210813-0005/" }, { "url": "https://www.oracle.com/security-alerts/cpujan2022.html", "refsource": "MISC", "name": "https://www.oracle.com/security-alerts/cpujan2022.html" }, { "refsource": "GENTOO", "name": "GLSA-202208-02", "url": "https://security.gentoo.org/glsa/202208-02" } ] } }