all InfoSec news
USN-6038-2: Go vulnerabilities
Jan. 9, 2024, 1:08 p.m. |
Ubuntu security notices ubuntu.com
the corresponding updates for Go 1.13 and Go 1.16.
CVE-2022-29526 and CVE-2022-30630 only affected Go 1.16.
Original advisory details:
It was discovered that the Go net/http module incorrectly handled
Transfer-Encoding headers in the HTTP/1 client. A remote attacker could
possibly use this issue to perform an HTTP Request Smuggling attack.
(CVE-2022-1705)
It was discovered that Go did not properly manage memory under certain
circumstances. An attacker could possibly use this …
advisory attacker client cve encoding headers http issue transfer update updates usn vulnerabilities
More from ubuntu.com / Ubuntu security notices
USN-6757-2: PHP vulnerabilities
3 days, 11 hours ago |
ubuntu.com
USN-6762-1: GNU C Library vulnerabilities
3 days, 14 hours ago |
ubuntu.com
USN-6760-1: Gerbv vulnerability
5 days, 5 hours ago |
ubuntu.com
LSN-0103-1: Kernel Live Patch Security Notice
5 days, 16 hours ago |
ubuntu.com
USN-6758-1: JSON5 vulnerability
5 days, 16 hours ago |
ubuntu.com
USN-6761-1: Anope vulnerability
5 days, 20 hours ago |
ubuntu.com
USN-6759-1: FreeRDP vulnerabilities
6 days, 11 hours ago |
ubuntu.com
USN-6757-1: PHP vulnerabilities
6 days, 13 hours ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
Security Analyst
@ Northwestern Memorial Healthcare | Chicago, IL, United States
GRC Analyst
@ Richemont | Shelton, CT, US
Security Specialist
@ Peraton | Government Site, MD, United States
Information Assurance Security Specialist (IASS)
@ OBXtek Inc. | United States
Cyber Security Technology Analyst
@ Airbus | Bengaluru (Airbus)
Vice President, Cyber Operations Engineer
@ BlackRock | LO9-London - Drapers Gardens