[Bug 2068823] [NEW] gofmt in golang-1.22-go flagged by multiple EDR software

Fri, 14 Jun 2024 19:47:13 -0700 

*** This bug is a security vulnerability ***

You have been subscribed to a public security bug by Seth Arnold (seth-arnold):

The gofmt binary in golang-1.22-go is flagged by virtualtotal as
malicious.

```
# dpkg-deb -x golang-1.22-go_1.22.2-2_amd64.deb  .
# md5sum ./usr/lib/go-1.22/bin/gofmt /usr/lib/go-1.22/bin/gofmt
69539500b42521c884571eeebc8b74fb  ./usr/lib/go-1.22/bin/gofmt
69539500b42521c884571eeebc8b74fb  /usr/lib/go-1.22/bin/gofmt
# ./vt scan file  ./usr/lib/go-1.22/bin/gofmt
./usr/lib/go-1.22/bin/gofmt 
Njk1Mzk1MDBiNDI1MjFjODg0NTcxZWVlYmM4Yjc0ZmI6MTcxNzkxOTY4NQ==
# ./vt analysis Njk1Mzk1MDBiNDI1MjFjODg0NTcxZWVlYmM4Yjc0ZmI6MTcxNzkxOTY4NQ==
... 
    Google:
      category: "malicious"
      engine_name: "Google"
      engine_update: "20240609"
      engine_version: "1717916421"
      method: "blacklist"
      result: "Detected"
...
  stats:
    confirmed-timeout: 0
    failure: 0
    harmless: 0
    malicious: 7
    suspicious: 0
    timeout: 0
    type-unsupported: 11
    undetected: 57
  status: "completed"
```

ProblemType: Bug
DistroRelease: Ubuntu 24.04
Package: golang-1.22-go 1.22.2-2
ProcVersionSignature: Ubuntu 6.8.0-1009.9-aws 6.8.4
Uname: Linux 6.8.0-1009-aws x86_64
NonfreeKernelModules: zfs
ApportVersion: 2.28.1-0ubuntu3
Architecture: amd64
CasperMD5CheckResult: unknown
CloudArchitecture: x86_64
CloudBuildName: server
CloudID: aws
CloudName: aws
CloudPlatform: ec2
CloudRegion: us-east-1
CloudSerial: 20220912
CloudSubPlatform: metadata (http://169.254.169.254)
Date: Sun Jun  9 10:59:08 2024
Ec2Architecture: x86_64
Ec2Imageid: ami-08c40ec9ead489470
Ec2Instancetype: u-12tb1.112xlarge
Ec2Region: us-east-1
ProcEnviron:
 LANG=C.UTF-8
 LC_CTYPE=C.UTF-8
 PATH=(custom, no user)
 SHELL=/bin/bash
 TERM=xterm-256color
SourcePackage: golang-1.22
UpgradeStatus: Upgraded to noble on 2024-06-06 (2 days ago)

** Affects: golang-1.22 (Ubuntu)
     Importance: Undecided
         Status: New


** Tags: amd64 apport-bug cloud-image noble
-- 
gofmt in golang-1.22-go flagged by multiple EDR software
https://bugs.launchpad.net/bugs/2068823
You received this bug notification because you are a member of Ubuntu Bugs, 
which is subscribed to the bug report.

-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to