{"affected":[{"ecosystem_specific":{"binaries":[{"google-osconfig-agent":"20230222.00-150000.1.27.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Public Cloud 15 SP1","name":"google-osconfig-agent","purl":"pkg:rpm/suse/google-osconfig-agent&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"20230222.00-150000.1.27.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"google-osconfig-agent":"20230222.00-150000.1.27.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Public Cloud 15 SP2","name":"google-osconfig-agent","purl":"pkg:rpm/suse/google-osconfig-agent&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP2"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"20230222.00-150000.1.27.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"google-osconfig-agent":"20230222.00-150000.1.27.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Public Cloud 15 SP3","name":"google-osconfig-agent","purl":"pkg:rpm/suse/google-osconfig-agent&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"20230222.00-150000.1.27.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"google-osconfig-agent":"20230222.00-150000.1.27.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Public Cloud 15 SP4","name":"google-osconfig-agent","purl":"pkg:rpm/suse/google-osconfig-agent&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"20230222.00-150000.1.27.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"google-osconfig-agent":"20230222.00-150000.1.27.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.4","name":"google-osconfig-agent","purl":"pkg:rpm/opensuse/google-osconfig-agent&distro=openSUSE%20Leap%2015.4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"20230222.00-150000.1.27.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for google-osconfig-agent fixes the following issues:\n\n  Updated to version 20230222.00 and bumped go API version to 1.18 to address the following (bsc#1208723): \n\n  - CVE-2021-38297: Fixed data overwrite when passing large arguments to GOARCH=wasm GOOS=js (bsc#1191468).\n  - CVE-2022-23806: Fixed Curve.IsOnCurve to incorrectly return true (bsc#1195838).\n\n","id":"SUSE-SU-2023:0602-1","modified":"2023-03-02T13:54:18Z","published":"2023-03-02T13:54:18Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2023/suse-su-20230602-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1191468"},{"type":"REPORT","url":"https://bugzilla.suse.com/1195838"},{"type":"REPORT","url":"https://bugzilla.suse.com/1208723"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-38297"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-23806"}],"related":["CVE-2021-38297","CVE-2022-23806"],"summary":"Security update for google-osconfig-agent","upstream":["CVE-2021-38297","CVE-2022-23806"]}