CVE-2019-16276

Source

https://nvd.nist.gov/vuln/detail/CVE-2019-16276

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-16276.json

Aliases

• GO-2022-0212

Related

• DLA-2591-1
• DLA-2592-1
• DSA-4534-1

Published

2019-09-30T19:15:08Z

Modified

2023-11-29T07:13:59.428095Z

Details

Go before 1.12.10 and 1.13.x before 1.13.1 allow HTTP Request Smuggling.

References

• https://access.redhat.com/errata/RHSA-2020:0101
• https://access.redhat.com/errata/RHSA-2020:0329
• https://access.redhat.com/errata/RHSA-2020:0652
• https://security.netapp.com/advisory/ntap-20191122-0004/
• http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00043.html
• http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00044.html
• https://lists.debian.org/debian-lts-announce/2021/03/msg00014.html
• https://lists.debian.org/debian-lts-announce/2021/03/msg00015.html
• https://github.com/golang/go/issues/34540
• https://groups.google.com/forum/#%21msg/golang-announce/cszieYyuL9Q/g4Z7pKaqAgAJ
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LULL72EUUKIY4NWDZVJVN2LIB4MXHS5P/
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7GMJ3VXF5RXK2C7CL66KJ6XOOTOL5BJ/
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Q5MD2F7ATWSTB45ZJIPJHBAAHVRGRAKG/