Description: ``` When invoking functions from WASM modules, built using GOARCH=wasm GOOS=js, passing very large arguments can cause portions of the module to be overwritten with data from the arguments. If using wasm_exec.js to execute WASM modules, users will need to replace their copy (as described in https://golang.org/wiki/WebAssembly#getting-started) after rebuilding any modules. This is issue #48797 and CVE-2021-38297. Thanks to Ben Lubar for reporting this issue. ```
ping
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=19335011ed7ba62e12ca1fa94fb0da3a28e1160e commit 19335011ed7ba62e12ca1fa94fb0da3a28e1160e Author: William Hubbs <williamh@gentoo.org> AuthorDate: 2021-10-12 21:39:36 +0000 Commit: William Hubbs <williamh@gentoo.org> CommitDate: 2021-10-12 21:40:16 +0000 dev-lang/go: 1.17.2 bump Bug: https://bugs.gentoo.org/816912 Package-Manager: Portage-3.0.20, Repoman-3.0.3 Signed-off-by: William Hubbs <williamh@gentoo.org> dev-lang/go/Manifest | 1 + dev-lang/go/go-1.17.2.ebuild | 197 +++++++++++++++++++++++++++++++++++++++++++ 2 files changed, 198 insertions(+)
Please cleanup
The only version of go in the tree at this point is 1.17.5.