github.com/golang/net is vulnerable to a denial of service (DoS) attack. The library does not properly handle special TokenTypes when parsed during the in frameset
insertion mode, causing a panic: runtime
error that can crash the application.
bugs.chromium.org/p/chromium/issues/detail?id=829668
github.com/golang/go/issues/23071
github.com/golang/go/issues/27016
github.com/golang/net/commit/aaf60122140d3fcf75376d319f0554393160eb50
lists.fedoraproject.org/archives/list/[email protected]/message/LREEWY6KNLHRWFZ7OT4HVLMVVCGGUHON/
lists.fedoraproject.org/archives/list/[email protected]/message/UKRCI7WIOCOCD3H7NXWRGIRABTQOZOBK/