2019-10-15
ALT-BU-2019-4011-1
Branch p8 update bulletin.
Closed vulnerabilities
Published: 2019-09-30
BDU:2019-04670
Уязвимость программного пакета Go, связанная с непоследовательной интерпретацией http-запросов, позволяющая нарушителю оказать воздействие на целостность данных
Severity: HIGH (7.5)
Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
References:
Published: 2019-09-30
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2019-16276
Go before 1.12.10 and 1.13.x before 1.13.1 allow HTTP Request Smuggling.
Severity: HIGH (7.5)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
References:
- openSUSE-SU-2019:2522
- openSUSE-SU-2019:2522
- openSUSE-SU-2019:2521
- openSUSE-SU-2019:2521
- RHSA-2020:0101
- RHSA-2020:0101
- RHSA-2020:0329
- RHSA-2020:0329
- RHSA-2020:0652
- RHSA-2020:0652
- https://github.com/golang/go/issues/34540
- https://github.com/golang/go/issues/34540
- https://groups.google.com/forum/#%21msg/golang-announce/cszieYyuL9Q/g4Z7pKaqAgAJ
- https://groups.google.com/forum/#%21msg/golang-announce/cszieYyuL9Q/g4Z7pKaqAgAJ
- [debian-lts-announce] 20210313 [SECURITY] [DLA 2591-1] golang-1.7 security update
- [debian-lts-announce] 20210313 [SECURITY] [DLA 2591-1] golang-1.7 security update
- [debian-lts-announce] 20210313 [SECURITY] [DLA 2592-1] golang-1.8 security update
- [debian-lts-announce] 20210313 [SECURITY] [DLA 2592-1] golang-1.8 security update
- FEDORA-2019-1b8cbd39ff
- FEDORA-2019-1b8cbd39ff
- FEDORA-2019-e99c1603c3
- FEDORA-2019-e99c1603c3
- FEDORA-2019-416d20f960
- FEDORA-2019-416d20f960
- https://security.netapp.com/advisory/ntap-20191122-0004/
- https://security.netapp.com/advisory/ntap-20191122-0004/