Amazon Linux AMI : golang (ALAS-2017-857)
Medium Nessus Plugin ID 101551
SynopsisThe remote Amazon Linux AMI host is missing a security update.
DescriptionGolang: Elliptic curves carry propagation issue in x86-64 P-256. A carry propagation flaw was found in the implementation of the P-256 elliptic curve in golang. An attacker could use this flaw to extract private keys when static ECDH is used. (CVE-2017-8932)
SolutionRun 'yum update golang' to update your system.