{"containers":{"cna":{"providerMetadata":{"orgId":"1bb62c36-49e3-4200-9d77-64a1400537cc","shortName":"Go","dateUpdated":"2023-06-12T19:05:15.506Z"},"title":"Panic when decoding Float and Rat types in math/big","descriptions":[{"lang":"en","value":"A too-short encoded message can cause a panic in Float.GobDecode and Rat GobDecode in math/big in Go before 1.17.13 and 1.18.5, potentially allowing a denial of service."}],"affected":[{"vendor":"Go standard library","product":"math/big","collectionURL":"https://pkg.go.dev","packageName":"math/big","versions":[{"version":"0","lessThan":"1.17.13","status":"affected","versionType":"semver"},{"version":"1.18.0-0","lessThan":"1.18.5","status":"affected","versionType":"semver"}],"programRoutines":[{"name":"Float.GobDecode"},{"name":"Rat.GobDecode"}],"defaultStatus":"unaffected"}],"problemTypes":[{"descriptions":[{"lang":"en","description":"CWE 400: Uncontrolled Resource Consumption"}]}],"references":[{"url":"https://go.dev/cl/417774"},{"url":"https://go.googlesource.com/go/+/055113ef364337607e3e72ed7d48df67fde6fc66"},{"url":"https://go.dev/issue/53871"},{"url":"https://groups.google.com/g/golang-announce/c/YqYYG87xB10"},{"url":"https://pkg.go.dev/vuln/GO-2022-0537"}],"credits":[{"lang":"en","value":"@catenacyber"}]},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-03T07:32:56.026Z"},"title":"CVE Program Container","references":[{"url":"https://go.dev/cl/417774","tags":["x_transferred"]},{"url":"https://go.googlesource.com/go/+/055113ef364337607e3e72ed7d48df67fde6fc66","tags":["x_transferred"]},{"url":"https://go.dev/issue/53871","tags":["x_transferred"]},{"url":"https://groups.google.com/g/golang-announce/c/YqYYG87xB10","tags":["x_transferred"]},{"url":"https://pkg.go.dev/vuln/GO-2022-0537","tags":["x_transferred"]}]}]},"cveMetadata":{"assignerOrgId":"1bb62c36-49e3-4200-9d77-64a1400537cc","assignerShortName":"Go","cveId":"CVE-2022-32189","datePublished":"2022-08-09T20:17:59.000Z","dateReserved":"2022-05-31T00:00:00.000Z","dateUpdated":"2024-08-03T07:32:56.026Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}