CVE-2021-34558 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2021-34558 Interim 1 29 2023-09-11T23:40:34Z current 2021-07-13T10:31:16Z 2023-09-11T23:40:34Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2021-34558 The crypto/tls package of Go through 1.16.5 does not properly assert that the type of public key in an X.509 certificate matches the expected type when doing a RSA based key exchange, allowing a malicious TLS server to cause a TLS client to panic. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.suse.com/pipermail/sle-security-updates/2022-July/011624.html E-Mail link for SUSE-CU-2022:1616-1 https://lists.suse.com/pipermail/sle-security-updates/2021-July/009156.html E-Mail link for SUSE-SU-2021:2392-1 https://lists.suse.com/pipermail/sle-security-updates/2021-July/009158.html E-Mail link for SUSE-SU-2021:2398-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/V2VBWNYDPOVJ4NFLIRNHJGULW2GKRQ4T/ E-Mail link for openSUSE-SU-2021:1078-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/KY7UHEDTSX6MOHJLHMRNQVBUTCR2XMOB/ E-Mail link for openSUSE-SU-2021:1079-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/AKQH4LHYIFOWBEGMGHD7S7TTV7JL4U7W/ E-Mail link for openSUSE-SU-2021:2392-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/OZJXXUXBI66VV2PXRNAWN4MCE3AOHNBA/ E-Mail link for openSUSE-SU-2021:2398-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings Container bci/golang:1.16-13.3 Container trento/trento-runner:1.0.1-build4.16.1 SUSE CaaS Platform 4.0 SUSE Enterprise Storage 6 SUSE Linux Enterprise Module for Development Tools 15 SP2 SUSE Linux Enterprise Module for Development Tools 15 SP3 SUSE Linux Enterprise Module for Development Tools 15 SP2 SUSE Linux Enterprise Module for Development Tools 15 SP3 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS SUSE Linux Enterprise Module for Development Tools 15 SP2 SUSE Linux Enterprise Module for Development Tools 15 SP3 SUSE Linux Enterprise Server 15 SP1-LTSS SUSE Linux Enterprise Module for Development Tools 15 SP2 SUSE Linux Enterprise Module for Development Tools 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SP2 SUSE Linux Enterprise Module for Development Tools 15 SP3 SUSE Linux Enterprise Module for Development Tools 15 SP2 SUSE Linux Enterprise Module for Development Tools 15 SP3 SUSE Linux Enterprise Module for Development Tools 15 SP2 SUSE Linux Enterprise Module for Development Tools 15 SP3 SUSE Linux Enterprise Module for Development Tools 15 SP2 SUSE Linux Enterprise Module for Development Tools 15 SP3 openSUSE Leap 15.2 openSUSE Leap 15.3 openSUSE Tumbleweed go1.15 go1.15-1.15.14-1.36.1 go1.15-1.15.14-lp152.23.1 go1.15-1.15.15-1.2 go1.15-doc go1.15-doc-1.15.14-1.36.1 go1.15-doc-1.15.14-lp152.23.1 go1.15-doc-1.15.15-1.2 go1.15-race go1.15-race-1.15.14-1.36.1 go1.15-race-1.15.14-lp152.23.1 go1.15-race-1.15.15-1.2 go1.16-1.16.6-1.20.1 go1.16-1.16.6-lp152.5.1 go1.16-1.16.8-1.1 go1.16-doc-1.16.6-1.20.1 go1.16-doc-1.16.6-lp152.5.1 go1.16-doc-1.16.8-1.1 go1.16-race-1.16.6-1.20.1 go1.16-race-1.16.6-lp152.5.1 go1.16-race-1.16.8-1.1 go1.16-1.16.6-1.20.1 as a component of Container bci/golang:1.16-13.3 go1.16-1.16.6-1.20.1 as a component of Container trento/trento-runner:1.0.1-build4.16.1 go1.15-1.15.14-1.36.1 as a component of SUSE Linux Enterprise Module for Development Tools 15 SP2 go1.15-doc-1.15.14-1.36.1 as a component of SUSE Linux Enterprise Module for Development Tools 15 SP2 go1.15-race-1.15.14-1.36.1 as a component of SUSE Linux Enterprise Module for Development Tools 15 SP2 go1.16-1.16.6-1.20.1 as a component of SUSE Linux Enterprise Module for Development Tools 15 SP2 go1.16-doc-1.16.6-1.20.1 as a component of SUSE Linux Enterprise Module for Development Tools 15 SP2 go1.16-race-1.16.6-1.20.1 as a component of SUSE Linux Enterprise Module for Development Tools 15 SP2 go1.15-1.15.14-1.36.1 as a component of SUSE Linux Enterprise Module for Development Tools 15 SP3 go1.15-doc-1.15.14-1.36.1 as a component of SUSE Linux Enterprise Module for Development Tools 15 SP3 go1.15-race-1.15.14-1.36.1 as a component of SUSE Linux Enterprise Module for Development Tools 15 SP3 go1.16-1.16.6-1.20.1 as a component of SUSE Linux Enterprise Module for Development Tools 15 SP3 go1.16-doc-1.16.6-1.20.1 as a component of SUSE Linux Enterprise Module for Development Tools 15 SP3 go1.16-race-1.16.6-1.20.1 as a component of SUSE Linux Enterprise Module for Development Tools 15 SP3 go1.15-1.15.14-lp152.23.1 as a component of openSUSE Leap 15.2 go1.15-doc-1.15.14-lp152.23.1 as a component of openSUSE Leap 15.2 go1.15-race-1.15.14-lp152.23.1 as a component of openSUSE Leap 15.2 go1.16-1.16.6-lp152.5.1 as a component of openSUSE Leap 15.2 go1.16-doc-1.16.6-lp152.5.1 as a component of openSUSE Leap 15.2 go1.16-race-1.16.6-lp152.5.1 as a component of openSUSE Leap 15.2 go1.15-1.15.14-1.36.1 as a component of openSUSE Leap 15.3 go1.15-doc-1.15.14-1.36.1 as a component of openSUSE Leap 15.3 go1.15-race-1.15.14-1.36.1 as a component of openSUSE Leap 15.3 go1.16-1.16.6-1.20.1 as a component of openSUSE Leap 15.3 go1.16-doc-1.16.6-1.20.1 as a component of openSUSE Leap 15.3 go1.16-race-1.16.6-1.20.1 as a component of openSUSE Leap 15.3 go1.15-1.15.15-1.2 as a component of openSUSE Tumbleweed go1.15-doc-1.15.15-1.2 as a component of openSUSE Tumbleweed go1.15-race-1.15.15-1.2 as a component of openSUSE Tumbleweed go1.16-1.16.8-1.1 as a component of openSUSE Tumbleweed go1.16-doc-1.16.8-1.1 as a component of openSUSE Tumbleweed go1.16-race-1.16.8-1.1 as a component of openSUSE Tumbleweed go1.15 as a component of SUSE CaaS Platform 4.0 go1.15-doc as a component of SUSE CaaS Platform 4.0 go1.15-race as a component of SUSE CaaS Platform 4.0 go1.15 as a component of SUSE Enterprise Storage 6 go1.15 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS go1.15-doc as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS go1.15-race as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS go1.15 as a component of SUSE Linux Enterprise Server 15 SP1-LTSS go1.15-doc as a component of SUSE Linux Enterprise Server 15 SP1-LTSS go1.15-race as a component of SUSE Linux Enterprise Server 15 SP1-LTSS go1.15 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP1 go1.15-doc as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP1 go1.15-race as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP1 The crypto/tls package of Go through 1.16.5 does not properly assert that the type of public key in an X.509 certificate matches the expected type when doing a RSA based key exchange, allowing a malicious TLS server to cause a TLS client to panic. CVE-2021-34558 Container bci/golang:1.16-13.3:go1.16-1.16.6-1.20.1 Container trento/trento-runner:1.0.1-build4.16.1:go1.16-1.16.6-1.20.1 SUSE Linux Enterprise Module for Development Tools 15 SP2:go1.15-1.15.14-1.36.1 SUSE Linux Enterprise Module for Development Tools 15 SP2:go1.15-doc-1.15.14-1.36.1 SUSE Linux Enterprise Module for Development Tools 15 SP2:go1.15-race-1.15.14-1.36.1 SUSE Linux Enterprise Module for Development Tools 15 SP2:go1.16-1.16.6-1.20.1 SUSE Linux Enterprise Module for Development Tools 15 SP2:go1.16-doc-1.16.6-1.20.1 SUSE Linux Enterprise Module for Development Tools 15 SP2:go1.16-race-1.16.6-1.20.1 SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.15-1.15.14-1.36.1 SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.15-doc-1.15.14-1.36.1 SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.15-race-1.15.14-1.36.1 SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.6-1.20.1 SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.6-1.20.1 SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.6-1.20.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP4:go1.15-1.15.14-1.36.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP4:go1.15-doc-1.15.14-1.36.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP4:go1.15-race-1.15.14-1.36.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP4:go1.16-1.16.6-1.20.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP4:go1.16-doc-1.16.6-1.20.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP4:go1.16-race-1.16.6-1.20.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP5:go1.15-1.15.14-1.36.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP5:go1.15-doc-1.15.14-1.36.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP5:go1.15-race-1.15.14-1.36.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP5:go1.16-1.16.6-1.20.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP5:go1.16-doc-1.16.6-1.20.1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP5:go1.16-race-1.16.6-1.20.1 openSUSE Leap 15.2:go1.15-1.15.14-lp152.23.1 openSUSE Leap 15.2:go1.15-doc-1.15.14-lp152.23.1 openSUSE Leap 15.2:go1.15-race-1.15.14-lp152.23.1 openSUSE Leap 15.2:go1.16-1.16.6-lp152.5.1 openSUSE Leap 15.2:go1.16-doc-1.16.6-lp152.5.1 openSUSE Leap 15.2:go1.16-race-1.16.6-lp152.5.1 openSUSE Leap 15.3:go1.15-1.15.14-1.36.1 openSUSE Leap 15.3:go1.15-doc-1.15.14-1.36.1 openSUSE Leap 15.3:go1.15-race-1.15.14-1.36.1 openSUSE Leap 15.3:go1.16-1.16.6-1.20.1 openSUSE Leap 15.3:go1.16-doc-1.16.6-1.20.1 openSUSE Leap 15.3:go1.16-race-1.16.6-1.20.1 openSUSE Tumbleweed:go1.15-1.15.15-1.2 openSUSE Tumbleweed:go1.15-doc-1.15.15-1.2 openSUSE Tumbleweed:go1.15-race-1.15.15-1.2 openSUSE Tumbleweed:go1.16-1.16.8-1.1 openSUSE Tumbleweed:go1.16-doc-1.16.8-1.1 openSUSE Tumbleweed:go1.16-race-1.16.8-1.1 SUSE CaaS Platform 4.0:go1.15 SUSE CaaS Platform 4.0:go1.15-doc SUSE CaaS Platform 4.0:go1.15-race SUSE Enterprise Storage 6:go1.15 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:go1.15 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:go1.15-doc SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:go1.15-race SUSE Linux Enterprise Server 15 SP1-LTSS:go1.15 SUSE Linux Enterprise Server 15 SP1-LTSS:go1.15-doc SUSE Linux Enterprise Server 15 SP1-LTSS:go1.15-race SUSE Linux Enterprise Server for SAP Applications 15 SP1:go1.15 SUSE Linux Enterprise Server for SAP Applications 15 SP1:go1.15-doc SUSE Linux Enterprise Server for SAP Applications 15 SP1:go1.15-race moderate 2.6 AV:N/AC:H/Au:N/C:N/I:N/A:P 5.3 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H