First published: Tue Jul 02 2024(Updated: )
Go net/http package is vulnerable to a denial of service, caused by improper 100-continue header handling. By sending "Expect: 100-continue" requests, a remote attacker could exploit this vulnerability to cause a denial of service.
Credit: security@golang.org security@golang.org
Affected Software | Affected Version | How to fix |
---|---|---|
IBM Concert Software | <=1.0.0 - 1.0.1 | |
debian/golang-1.15 | <=1.15.15-1~deb11u4 | |
debian/golang-1.19 | <=1.19.8-2 | |
debian/golang-1.22 | 1.22.10-1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.