Lucene search
PRIOn knowledge basePRION:CVE-2019-9741HistoryMar 13, 2019 - 8:29 a.m.
Crlf injection
2019-03-1308:29:00
PRIOn knowledge base
www.prio-n.com
9
An issue was discovered in net/http in Go 1.11.5. CRLF injection is possible if the attacker controls a url parameter, as demonstrated by the second argument to http.NewRequest with \r\n followed by an HTTP header or a Redis command.
| CPE | Name | Operator | Version |
|---|---|---|---|
| debian_linux | eq | 8.0 | |
| debian_linux | eq | 9.0 | |
| fedora | eq | 29 | |
| go | eq | 1.11.5 | |
| developer_tools | eq | 1.0 | |
| enterprise_linux | eq | 8.0 |
References
www.securityfocus.com/bid/107432
access.redhat.com/errata/RHSA-2019:1300
access.redhat.com/errata/RHSA-2019:1519
github.com/golang/go/issues/30794
lists.debian.org/debian-lts-announce/2019/04/msg00007.html
lists.debian.org/debian-lts-announce/2021/03/msg00014.html
lists.debian.org/debian-lts-announce/2021/03/msg00015.html
lists.fedoraproject.org/archives/list/[email protected]/message/TOOVCEPQM7TZA6VEZEEB7QZABXNHQEHH/
Related
nessus
nessus
Fedora 29 : golang (2019-d05bc7e3df)
2019-04-11 00:00:00
Oracle Linux 8 : go-toolset:rhel8 (ELSA-2019-1519)
2023-09-07 00:00:00
RHEL 8 : go-toolset:rhel8 (RHSA-2019:1519)
2019-06-19 00:00:00
ibm
ibm
amazon
amazon
Medium: golang
2019-07-17 23:28:00
oraclelinux
oraclelinux
go-toolset:rhel8 security update
2019-07-30 00:00:00
debiancve
debiancve
CVE-2019-9741
2019-03-13 08:29:00
redhat
redhat
(RHSA-2019:1519) Moderate: go-toolset:rhel8 security update
2019-06-18 16:35:00
(RHSA-2019:1300) Moderate: go-toolset-1.11-golang security update
2019-05-30 15:16:14
osv
osv
golang - security update
2019-04-03 00:00:00
CVE-2019-9741
2019-03-13 08:29:00
golang-1.7 - security update
2021-03-13 00:00:00
cvelist
cvelist
CVE-2019-9741
2019-03-13 06:00:00
ubuntucve
ubuntucve
CVE-2019-9741
2019-03-13 00:00:00
veracode
veracode
CRLF Injection
2019-03-15 01:13:53
debian
debian
[SECURITY] [DLA 1749-1] golang security update
2019-04-03 15:14:12
[SECURITY] [DLA 2591-1] golang-1.7 security update
2021-03-13 18:37:17
[SECURITY] [DLA 2592-1] golang-1.8 security update
2021-03-13 18:37:54
cve
cve
CVE-2019-9741
2019-03-13 08:29:00
openvas
openvas
Debian: Security Advisory (DLA-1749-1)
2019-04-03 00:00:00
Fedora Update for golang FEDORA-2019-d05bc7e3df
2019-05-07 00:00:00
Debian: Security Advisory (DLA-2592-1)
2021-03-14 00:00:00
redhatcve
redhatcve
CVE-2019-9741
2019-10-10 17:51:39
cbl_mariner
cbl_mariner
nvd
nvd
CVE-2019-9741
2019-03-13 08:29:00
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2019-2.0-0168
2019-07-15 00:00:00
Critical Photon OS Security Update - PHSA-2019-0168
2019-07-16 00:00:00
Critical Photon OS Security Update - PHSA-2019-0023
2019-07-04 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: golang-1.11.6-1.fc29
2019-04-10 07:36:54
[SECURITY] Fedora 29 Update: golang-1.11.13-1.fc29
2019-09-06 12:59:25
[SECURITY] Fedora 29 Update: golang-1.11.13-2.fc29
2019-10-14 16:48:25