CVE-2026-27141

Опубликовано: 26 фев. 2026

Источник: debian

EPSS Низкий

Описание

Due to missing nil check, sending 0x0a-0x0f HTTP/2 frames will cause a running server to panic

Пакет	Статус	Версия исправления	Релиз	Тип
golang-golang-x-net	not-affected			package

https://github.com/golang/go/issues/77652
Fixed by: https://github.com/golang/net/commit/19f580fd686a6bb31d4af15febe789827169bc26 (v0.51.0)

EPSS

Процентиль: 5%

0.0002

Низкий

CVE-2026-27141

CVSS3: 7.5

ubuntu

28 дней назад

Due to missing nil check, sending 0x0a-0x0f HTTP/2 frames will cause a running server to panic

CVE-2026-27141

CVSS3: 5.3

redhat

28 дней назад

Due to missing nil check, sending 0x0a-0x0f HTTP/2 frames will cause a running server to panic

CVE-2026-27141

CVSS3: 7.5

nvd

28 дней назад

Due to missing nil check, sending 0x0a-0x0f HTTP/2 frames will cause a running server to panic

CVE-2026-27141

CVSS3: 7.5

msrc

22 дня назад

Sending certain HTTP/2 frames can cause a server to panic in golang.org/x/net

GHSA-8fj7-8h3w-xwfm

CVSS3: 7.5

github

28 дней назад

Due to missing nil check, sending 0x0a-0x0f HTTP/2 frames will cause a running server to panic

EPSS

Процентиль: 5%

0.0002

Низкий