BoostSecurity

Gosec 113

BoostSecurity

Introduction to BoostSecurity
Introduction to BoostSecurity
- About BoostSecurity
  About BoostSecurity
  - User Experiences
- Getting Started
Tutorials
Tutorials
- Establish Your First Connection
  Establish Your First Connection
- Build First Custom Policy
How-to Guides
How-to Guides
- Integrate with Source Code Management
  Integrate with Source Code Management
  - Azure DevOps
  - Bitbucket
  - GitHub
  - GitLab
    
    GitLab
    
    SCA Findings
  - AWS CodeCommit
- Zero Touch Provisioning
  Zero Touch Provisioning
  - Install ZTP for Azure DevOps
    
    Install ZTP for Azure DevOps
    
    Uninstall
  - Install ZTP for Bitbucket
    
    Install ZTP for Bitbucket
    
    Unistall
  - Install ZTP for GitHub
    
    Install ZTP for GitHub
    
    Uninstall
  - Install ZTP for GitLab
    
    Install ZTP for GitLab
    
    Uninstall
- Tuning Provisioning
  Tuning Provisioning
  - Incresing Scanner Timeout
  - Ignoring Failure
- Software Bill Of Materials
  Software Bill Of Materials
  - Generating an SBOM
    
    Generating an SBOM
    
    Via AWS ECR
  - Configure Forbidden Licences
- Policy
  Policy
- Findings
  Findings
  - Snooze or Suppress Findings
    Snooze or Suppress Findings
    
    Suppression By Policy
    
    Via the UI
    
    Boostignore
- API
  API
  - Creating an API Key
  - Using the GraphQL API
    
    Using the GraphQL API
    
    Integrating BoostSecurity to Power BI
- Integrating with Third-Party
  Integrating with Third-Party
  - Notification Services
    
    Notification Services
    
    Jira
    
    Slack
    
    Teams
  - Scanners
    
    Scanners
    
    Checkmarx
    
    Snyk
    
    SonarQube
    
    Dependabot
    
    BlackDuck
  - Kubernetes
    
    Kubernetes
    
    Installation
    
    Code-To-Cloud Visibility
  - Code-To-Cloud Context Providers
    
    Code-To-Cloud Context Providers
    
    Wiz
- Removing Data
  Removing Data
  - Remove a Repo
  - Deprovision ZTP
Reference
Reference
- Platform User Interface
  Platform User Interface
  - Dashboard
  - Scans
  - Findings
    
    Findings
    
    Filter Options for Findings
  - Security Events
  - Projects
    
    Projects
    
    Project
  - Insights
  - Policy
    
    Policy
    
    Policy Rule Categories
  - Scanner Coverage
    
    Scanner Coverage
    
    Provision Scanners
    
    Configure Scanners
    
    Global Scanner Configuration
    
    Deprovision Scanners
  - Supply Chain Inventory
  - SBOM
    
    SBOM
    
    Coverage
    
    Vulnerability
  - Compliance
  - Asset Management
    
    Asset Management
    
    Manage Monorepos
    
    CSV Export Columns
- Scanners
  Scanners
  - SAST
  - SCA
  - SBOM
    
    SBOM
    
    Container
  - CI Integration
    
    CI Integration
    
    Azure DevOps
    
    Bitbucket
    
    GitHub
    
    GitLab
  - Configuring Scanner Modules
  - Scanner Rules
    
    Scanner Rules
    
    BoostSecruity Scanner
    
    Checkov
    
    Checkmarx Scanner
    
    Gosec
    
    Trivy Image
- Terminology
  Terminology
  - BoostSecurity Terminology
  - Source Code Management Terminology
- FAQs
- Secrets
What's new

title: Usage of Rat.SetString in math/big with an overflow (CVE-2022-23772) shortname: G113 description: The software performs a calculation that can produce an integer overflow or wraparound. anchor: gosec group: top10-insecure-design pretty_name: G113: Usage of Rat.SetString in math/big with an overflow (CVE-2022-23772)

Usage of Rat.SetString in math/big with an overflow (CVE-2022-23772)¶

The software performs a calculation that can produce an integer overflow or wraparound.

More Information¶

G113: Usage of Rat.SetString in math/big with an overflow (CVE-2022-23772)