Описание
Go before 1.15.15 and 1.16.x before 1.16.7 has a race condition that can lead to a net/http/httputil ReverseProxy panic upon an ErrAbortHandler abort.
Ссылки
- PatchThird Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Third Party Advisory
- Third Party Advisory
- PatchThird Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.15.15 (исключая)Версия от 1.16.0 (включая) до 1.16.7 (исключая)
Одно из
cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*
cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
Конфигурация 3
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
Конфигурация 4Версия до 21.1.1.1.0 (исключая)
cpe:2.3:a:oracle:timesten_in-memory_database:*:*:*:*:*:*:*:*
Конфигурация 5Версия до 2.0 (исключая)
Одновременно
cpe:2.3:o:siemens:scalance_lpe9403_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:scalance_lpe9403:-:*:*:*:*:*:*:*
EPSS
Процентиль: 44%
0.00212
Низкий
5.9 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-362
Связанные уязвимости
CVSS3: 5.9
ubuntu
почти 4 года назад
Go before 1.15.15 and 1.16.x before 1.16.7 has a race condition that can lead to a net/http/httputil ReverseProxy panic upon an ErrAbortHandler abort.
CVSS3: 5.9
redhat
около 4 лет назад
Go before 1.15.15 and 1.16.x before 1.16.7 has a race condition that can lead to a net/http/httputil ReverseProxy panic upon an ErrAbortHandler abort.
CVSS3: 5.9
debian
почти 4 года назад
Go before 1.15.15 and 1.16.x before 1.16.7 has a race condition that c ...
EPSS
Процентиль: 44%
0.00212
Низкий
5.9 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-362