Skip to main content
Version: latest

CVE-2023-24537

CVE Details

CVE-2023-24537

Last Update

09/18/2024

NIST CVE Summary

Calling any of the Parse functions on Go source code which contains //line directives with very large line numbers can cause an infinite loop due to integer overflow.

Our Official Summary

This is a new golang-related security vulnerability that affects Go languages, which can cause an infinite loop and a denial-of-service attack, due to a integer overflow. The images in which this is reported will be upgraded to fix the issue.

CVE Severity

7.5

Status

Ongoing

Affected Products & Versions

  • Palette VerteX 4.4.18

Revision History

  • 1.0 09/15/2024 Initial Publication
  • 2.0 09/15/2024 Added palette VerteX 4.4.18 to Affected Products