29 matches found
SUSE-SU-2026:2682-1 Security update for google-cloud-sap-agent
This update for google-cloud-sap-agent fixes the following issues: - CVE-2026-39821: Update golang.org/x/net dependency bsc1266604...
MGASA-2026-0190 Updated golang-x-net packages fix security vulnerability
CVE-2024-45338 An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service...
Updated golang-x-net packages fix security vulnerability
CVE-2024-45338 An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service...
Astra Linux – Vulnerability in golang-golang-x-net
An attacker can cause excessive memory usage in a Go server that accepts HTTP/2 requests. HTTP/2 server connections include a cache of HTTP header keys sent by the client. Although the total number of entries in this cache is limited, an attacker who sends very large keys can cause the server to...
Astra Linux – Vulnerability in golang-golang-x-net, golang-1.15
In Go, before versions 1.15.12 and 1.16.x, and before version 1.16.4, net/http allowed remote attackers to cause a denial of service panic through a large header sent to ReadRequest or ReadResponse. This issue can affect the Server, Transport, and Client components in certain configurations...
Astra Linux – Vulnerability in golang-golang-x-net
In Go, net/http versions before 1.16.12 and 1.17.x, as well as before 1.17.5, allowed uncontrolled memory consumption in the header canonicalization cache through HTTP/2 requests...
Astra Linux – Vulnerability in golang-golang-x-net
In net/http in Go, before versions 1.18.6 and 1.19.x, and before version 1.19.1, attackers can cause a denial of service because an HTTP/2 connection may become unresponsive during closure, if the shutdown process is interrupted by a fatal error...
Astra Linux – Vulnerability in golang-golang-x-net, golang-1.19
A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, enough to trigger a denial of service due to a small number of small requests...
CVE-2026-33814 Infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE in net/http/internal/http2 in golang.org/x/net
When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a SETTINGSMAXFRAMESIZE with a value of 0...
ROS-20260401-73-0041
Vulnerability in golang-x-net related to execution of a loop with an unreachable exit condition. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260401-73-0040
Vulnerability in golang-x-net related to insufficient control of the resource during its existence. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
Ubuntu: Security Advisory (USN-8089-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security update for go-sendxmpp (important)
openSUSE Security Update: Security update for go-sendxmpp Announcement ID: openSUSE-SU-2025:0483-1 Rating: important References: 1251461 1251677 Cross-References: CVE-2025-47911 CVE-2025-58190 CVSS scores: CVE-2025-47911 SUSE: 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N...
ROOT-OS-DEBIAN-12-CVE-2025-22872 CVE-2025-22872 in rootio-golang-golang-x-net - Patched by Root
Root has patched CVE-2025-22872 in the rootio-golang-golang-x-net package for Root:Debian:12. Multiple fixed versions available...
CVE-2024-45338
An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow parsing. This could cause a denial of service...
Fedora: Security Advisory (FEDORA-2023-dc7cceb285)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 39 Update: golang-x-net-0.20.0-1.fc39
This package holds supplementary Go networking libraries...
[SECURITY] Fedora 38 Update: golang-x-net-0.20.0-1.fc38
This package holds supplementary Go networking libraries...
Fedora: Security Advisory for golang-x-net (FEDORA-2024-0ac454dafc)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 38 : golang-x-net (2024-0ac454dafc)
The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-0ac454dafc advisory. update to v0.20.0 for CVE-2023-39325 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that...