Synopsis: Moderate: golang security, bug fix, and enhancement Advisory ID: SLSA-2017:1859-1 Issue Date: 2017-08-01 CVE Numbers: CVE-2017-8932 -- The following packages have been upgraded to a later upstream version: golang (1.8.3). Security Fix(es): * A carry propagation flaw was found in the implementation of the P-256 elliptic curve in golang. An attacker could possibly use this flaw to extract private keys when static ECDH was used. (CVE-2017-8932) -- SL7 x86_64 golang-docs-1.8.3-1.el7.noarch.rpm golang-misc-1.8.3-1.el7.noarch.rpm golang-src-1.8.3-1.el7.noarch.rpm golang-tests-1.8.3-1.el7.noarch.rpm golang-bin-1.8.3-1.el7.x86_64.rpm golang-1.8.3-1.el7.x86_64.rpm - Scientific Linux Development Team