Vulnerabilities

CVE-2015-5741

by Fred · 08/02/2020

The net/http library in net/http/transfer.go in Go before 1.4.3 does not properly parse HTTP headers, which allows remote attackers to conduct HTTP request smuggling attacks via a request that contains Content-Length and Transfer-Encoding header fields.

Date published : 2020-02-08

http://lists.fedoraproject.org/pipermail/package-announce/2015-October/167997.html

http://lists.fedoraproject.org/pipermail/package-announce/2015-October/168029.html

Similar

Tags: Cybersecurity Alert