A flaw was found Go’s net/http package. Servers using ReverseProxy from net/http in the Go standard library are vulnerable to a data race that results in a denial of service. The highest threat from this vulnerability is to system availability.

References

bugzilla.redhat.com/show_bug.cgi?id=1856953

groups.google.com/g/golang-announce/c/XZNfaiwgt2w/m/E6gHDs32AQAJ

nvd.nist.gov/vuln/detail/CVE-2020-15586

www.cve.org/CVERecord?id=CVE-2020-15586

osv 7

alpinelinux 1

nessus 33

veracode 1

cbl_mariner 2

ubuntucve 1

prion 1

nvd 1

amazon 2

cloudfoundry 1

ibm 15

cve 1

cvelist 1

debiancve 1

fedora 3

openvas 15

redhat 24

altlinux 2

suse 4

debian 3

mageia 1

oraclelinux 1

photon 3

oracle 1

osv

BIT-golang-2020-15586

2024-03-06 11:08:19

Data race and crash in net/http

2022-02-17 17:36:04

GO-2021-0141

2022-01-04 18:16:23

alpinelinux

CVE-2020-15586

2020-07-17 16:15:11

nessus

Fedora 32 : golang (2020-9cd1204ba0)

2020-07-30 00:00:00

Fedora 31 : golang (2020-d75360e2b0)

2020-07-30 00:00:00

Amazon Linux 2 : golang (ALAS-2020-1479)

2020-08-26 00:00:00

veracode

Denial Of Service (DoS)

2020-07-17 06:00:32

cbl_mariner

CVE-2020-15586 affecting package python-tensorboard for versions less than 2.16.2-1

2024-05-17 21:38:35

CVE-2020-15586 affecting package golang 1.13.11-

2021-07-08 21:56:48

ubuntucve

CVE-2020-15586

2020-07-17 00:00:00

prion

Design/Logic Flaw

2020-07-17 16:15:00

nvd

CVE-2020-15586

2020-07-17 16:15:11

amazon

Medium: golang

2020-08-26 23:09:00

Medium: golang

2020-08-18 20:23:00

cloudfoundry

CVE-2020-15586: Gorouter is vulnerable to DoS Attack via Expect: 100-continue requests | Cloud Foundry

2020-07-15 00:00:00

ibm

Security Bulletin: IBM Cloud Private is vulnerable to a Go vulnerability (CVE-2020-15586)

2021-02-26 14:02:50

Security Bulletin: Golang Vulnerabilities in IBM Cloud CLI 1.1.0 or earlier

2020-08-20 19:29:57

Security Bulletin: GO security vulnerabilities on IBM Watson Machine Learning Server

2021-05-03 15:00:52

cve

CVE-2020-15586

2020-07-17 16:15:11

cvelist

CVE-2020-15586

2020-07-17 15:38:24

debiancve

CVE-2020-15586

2020-07-17 16:15:11

fedora

[SECURITY] Fedora 31 Update: golang-1.13.14-1.fc31

2020-07-28 15:03:46

[SECURITY] Fedora 32 Update: golang-1.14.6-1.fc32

2020-07-30 17:53:53

[SECURITY] Fedora 32 Update: golang-1.14.7-1.fc32

2020-09-07 17:14:54

openvas

openSUSE: Security Advisory for go1.13 (openSUSE-SU-2020:1095-1)

2020-07-28 00:00:00

Debian: Security Advisory (DLA-2459-1)

2020-11-22 00:00:00

Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2020-2078)

2020-09-29 00:00:00

redhat

(RHSA-2021:0713) Low: OpenShift Container Platform 4.5.34 packages and security update

2021-03-11 04:33:08

(RHSA-2020:5649) Low: Red Hat OpenShift Service Mesh 1.1.11 security update

2020-12-22 04:40:34

(RHSA-2021:1016) Low: OpenShift Container Platform 4.5.37 security update

2021-04-13 22:52:32

altlinux

Security fix for the ALT Linux 9 package golang version 1.14.6-alt1

2020-07-27 00:00:00

Security fix for the ALT Linux 10 package golang version 1.14.6-alt1

2020-07-23 00:00:00

suse

Security update for go1.13 (important)

2020-07-27 00:00:00

Security update for go1.13 (important)

2020-07-26 00:00:00

Security update for go1.14 (important)

2020-09-11 00:00:00

debian

[SECURITY] [DLA 2459-1] golang-1.7 security update

2020-11-21 16:15:56

[SECURITY] [DLA 2460-1] golang-1.8 security update

2020-11-21 16:41:04

[SECURITY] [DSA 4848-1] golang-1.11 security update

2021-02-08 21:24:09

mageia

Updated golang packages fix security vulnerability

2020-08-18 20:41:27

oraclelinux

go-toolset:ol8 security update

2020-09-11 00:00:00

photon

Important Photon OS Security Update - PHSA-2020-0325

2020-09-19 00:00:00

Important Photon OS Security Update - PHSA-2020-0142

2020-09-19 00:00:00

Important Photon OS Security Update - PHSA-2020-3.0-0142

2020-09-19 00:00:00

oracle

Oracle Critical Patch Update Advisory - April 2021

2021-04-20 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.011 Low

EPSS

Percentile

84.4%

JSON

Related for RH:CVE-2020-15586