CVE-2020-15586

Go before 1.13.13 and 1.14.x before 1.14.5 has a data race in some net/http servers, as demonstrated by the httputil.ReverseProxy Handler, because it reads a request body and writes a response at the same time.

References

Affected packages

Git / github.com/cloudfoundry/cf-deployment

Affected ranges

Type

GIT

Repo

https://github.com/cloudfoundry/cf-deployment

Events

Introduced

Fixed

09456fce97dbeec8f374a789d0d3d0e1c166aa91

Introduced

Last affected

9b90a84cf1a40684f83fdb67ba81fd00c18286ce

Introduced

Last affected

98c1d5af66e2d316711bf8a4cab0d44f88c61fa3

Introduced

Last affected

5e8dbb65721b4bffe4b26f6825aabe3ba1f236a9

Introduced

Last affected

b119f228bfb28c8e8d5514a5ed46f1f5b4494510

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "13.7.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "9.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "10.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "15.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "15.2"
        }
    ]
}

Type

GIT

Repo

https://github.com/cloudfoundry/routing-release

Events

Introduced

Fixed

c8079142ef582bc8c51db13c9a17e22125f395d7

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "0.203.0"
        }
    ]
}

Type

GIT

Repo

https://github.com/golang/go

Events

Introduced

Fixed

1f8859c22ccdeb969b252c8139bf4b1aae5c4909

Introduced

Fixed

36fcde1676a0d3863cb5f295eed6938cd782fcbb

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "1.13.13"
        },
        {
            "introduced": "1.14.0"
        },
        {
            "fixed": "1.14.5"
        }
    ]
}

Affected versions

0.*

0.118.0

0.121.0

0.123.0

0.134.0

0.136.0

0.137.0

0.142.0

0.147.0

0.154.0

0.157.0

0.160.0

0.162.0

0.166.0

0.171.0

0.172.0

0.173.0

0.174.0

0.175.0

0.176.0

0.178.0

0.179.0

0.180.0

0.183.0

0.184.0

0.186.0

0.187.0

0.192.0

0.194.0

0.195.0

0.196.0

0.199.0

0.200.0

0.201.0

0.202.0

0.62.0

0.66.0

0.69.0

0.99.0

go1.*

go1.10beta1

go1.10beta2

go1.10rc1

go1.10rc2

go1.11beta1

go1.11beta2

go1.11beta3

go1.12beta1

go1.12beta2

go1.13

go1.13.10

go1.13.11

go1.13.12

go1.13.3

go1.13.4

go1.13.5

go1.13.6

go1.13.8

go1.13.9

go1.13beta1

go1.13rc1

go1.13rc2

go1.14

go1.14.1

go1.14.2

go1.14.3

go1.14.4

go1.14beta1

go1.14rc1

go1.3beta1

go1.3beta2

go1.4beta1

go1.5beta1

go1.5beta2

go1.5beta3

go1.6beta1

go1.6beta2

go1.7beta1

go1.7beta2

go1.7rc1

go1.7rc2

go1.7rc3

go1.7rc4

go1.8beta1

go1.8beta2

go1.9beta1

go1.9beta2

release.*

release.r56

v0.*

v0.0.0

v0.0.1

v0.0.2

v0.1.0

v0.10.0

v0.11.0

v0.12.0

v0.13.0

v0.14.0

v0.15.0

v0.2.0

v0.2.1

v0.2.2

v0.28.0

v0.29.0

v0.3.0

v0.30.0

v0.31.0

v0.32.0

v0.33.0

v0.34.0

v0.35.0

v0.36.0

v0.37.0

v0.5.0

v0.7.0

v0.8.0

v0.9.0

v0.9.1

v1.*

v1.0.0

v1.1.0

v1.10.0

v1.11.0

v1.12.0

v1.13.0

v1.14.0

v1.15.0

v1.16.0

v1.17.0

v1.18.0

v1.19.0

v1.2.0

v1.20.0

v1.21.0

v1.22.0

v1.23.0

v1.24.0

v1.25.0

v1.26.0

v1.27.0

v1.28.0

v1.29.0

v1.3.0

v1.30.0

v1.31.0

v1.32.0

v1.33.0

v1.34.0

v1.35.0

v1.36.0

v1.37.0

v1.38.0

v1.4.0

v1.5.0

v1.6.0

v1.7.0

v1.8.0

v1.9.0

v10.*

v10.0.0

v10.1.0

v11.*

v11.0.0

v11.1.0

v11.2.0

v12.*

v12.0.0

v12.1.0

v12.10.0

v12.11.0

v12.12.0

v12.13.0

v12.14.0

v12.15.0

v12.16.0

v12.17.0

v12.18.0

v12.19.0

v12.2.0

v12.20.0

v12.21.0

v12.22.0

v12.23.0

v12.24.0

v12.25.0

v12.26.0

v12.27.0

v12.28.0

v12.29.0

v12.3.0

v12.30.0

v12.31.0

v12.32.0

v12.33.0

v12.34.0

v12.35.0

v12.36.0

v12.37.0

v12.38.0

v12.39.0

v12.4.0

v12.40.0

v12.41.0

v12.42.0

v12.43.0

v12.44.0

v12.45.0

v12.5.0

v12.6.0

v12.7.0

v12.8.0

v12.9.0

v13.*

v13.0.0

v13.1.0

v13.10.0

v13.11.0

v13.12.0

v13.13.0

v13.14.0

v13.15.0

v13.16.0

v13.17.0

v13.18.0

v13.19.0

v13.2.0

v13.20.0

v13.21.0

v13.22.0

v13.23.0

v13.3.0

v13.4.0

v13.5.0

v13.6.0

v13.7.0

v13.8.0

v13.9.0

v14.*

v14.0.0

v15.*

v15.0.0

v15.1.0

v15.2.0

v2.*

v2.0.0

v2.1.0

v2.2.0

v2.3.0

v2.4.0

v2.5.0

v3.*

v3.0.0

v3.1.0

v3.2.0

v3.3.0

v3.4.0

v3.5.0

v3.6.0

v4.*

v4.0.0

v4.1.0

v4.2.0

v4.3.0

v4.4.0

v4.5.0

v5.*

v5.0.0

v5.1.0

v5.3.0

v5.4.0

v5.5.0

v6.*

v6.0.0

v6.1.0

v6.10.0

v6.2.0

v6.3.0

v6.4.0

v6.5.0

v6.6.0

v6.7.0

v6.8.0

v6.9.0

v7.*

v7.0.0

v7.1.0

v7.10.0

v7.11.0

v7.2.0

v7.3.0

v7.4.0

v7.5.0

v7.6.0

v7.8.0

v7.9.0

v8.*

v8.0.0

v8.1.0

v9.*

v9.0.0

Other

weekly

weekly.*

weekly.2009-11-06

weekly.2009-11-10

weekly.2009-11-10.1

weekly.2009-11-12

weekly.2009-11-17

weekly.2009-12-07

weekly.2009-12-09

weekly.2009-12-22

weekly.2010-01-05

weekly.2010-01-13

weekly.2010-01-27

weekly.2010-02-04

weekly.2010-02-17

weekly.2010-02-23

weekly.2010-03-04

weekly.2010-03-15

weekly.2010-03-22

weekly.2010-03-30

weekly.2010-04-13

weekly.2010-04-27

weekly.2010-05-04

weekly.2010-05-27

weekly.2010-06-09

weekly.2010-06-21

weekly.2010-07-01

weekly.2010-07-14

weekly.2010-07-29

weekly.2010-08-04

weekly.2010-08-11

weekly.2010-08-25

weekly.2010-09-06

weekly.2010-09-15

weekly.2010-09-22

weekly.2010-09-29

weekly.2010-10-13

weekly.2010-10-13.1

weekly.2010-10-20

weekly.2010-10-27

weekly.2010-11-02

weekly.2010-11-10

weekly.2010-11-23

weekly.2010-12-02

weekly.2010-12-08

weekly.2010-12-15

weekly.2010-12-15.1

weekly.2010-12-22

weekly.2011-01-06

weekly.2011-01-12

weekly.2011-01-19

weekly.2011-01-20

weekly.2011-02-01

weekly.2011-02-01.1

weekly.2011-02-15

weekly.2011-02-24

weekly.2011-03-07

weekly.2011-03-07.1

weekly.2011-03-15

weekly.2011-03-28

weekly.2011-04-04

weekly.2011-04-13

weekly.2011-04-27

weekly.2011-05-22

weekly.2011-06-02

weekly.2011-06-09

weekly.2011-06-16

weekly.2011-06-23

weekly.2011-07-07

weekly.2011-07-19

weekly.2011-07-29

weekly.2011-08-10

weekly.2011-08-17

weekly.2011-09-01

weekly.2011-09-07

weekly.2011-09-16

weekly.2011-09-21

weekly.2011-10-06

weekly.2011-10-18

weekly.2011-10-25

weekly.2011-10-26

weekly.2011-11-01

weekly.2011-11-02

weekly.2011-11-08

weekly.2011-11-09

weekly.2011-11-18

weekly.2011-12-01

weekly.2011-12-02

weekly.2011-12-06

weekly.2011-12-14

weekly.2011-12-22

weekly.2012-01-15

weekly.2012-01-20

weekly.2012-01-27

weekly.2012-02-07

weekly.2012-02-14

weekly.2012-02-22

weekly.2012-03-04

weekly.2012-03-13

weekly.2012-03-22

weekly.2012-03-27

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-15586.json"

unresolved_ranges

[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "31"
            }
        ]
    },
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "32"
            }
        ]
    }
]