CVE-2024-34158

Related Files

Ubuntu Security Notice USN-7111-1

Posted Nov 15, 2024

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 7111-1 - Philippe Antoine discovered that Go incorrectly handled crafted HTTP/2 streams. An attacker could possibly use this issue to cause a denial of service. Marten Seemann discovered that Go did not properly manage memory under certain circumstances. An attacker could possibly use this issue to cause a panic resulting in a denial of service. Ameya Darshan and Jakob Ackermann discovered that Go did not properly validate the amount of memory and disk files ReadForm can consume. An attacker could possibly use this issue to cause a panic resulting in a denial of service.

tags | advisory, web, denial of service

systems | linux, ubuntu

advisories | CVE-2022-41723, CVE-2022-41724, CVE-2022-41725, CVE-2023-24536, CVE-2023-39323, CVE-2023-45288, CVE-2023-45290, CVE-2024-24783, CVE-2024-24784, CVE-2024-24789, CVE-2024-24791, CVE-2024-34155, CVE-2024-34156, CVE-2024-34158

SHA-256 | 8309e2cc82bec72641de9766c00b5b04be56b3f96d79c53bdc77264e677a87a9

Download | Favorite | View

Ubuntu Security Notice USN-7081-1

Posted Oct 23, 2024

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 7081-1 - It was discovered that the Go net/http module did not properly handle responses to requests with an "Expect: 100-continue" header under certain circumstances. An attacker could possibly use this issue to cause a denial of service. It was discovered that the Go parser module did not properly handle deeply nested literal values. An attacker could possibly use this issue to cause a panic resulting in a denial of service.

tags | advisory, web, denial of service

systems | linux, ubuntu

advisories | CVE-2024-24791, CVE-2024-34155, CVE-2024-34156, CVE-2024-34158

SHA-256 | 7172da16c5ed0479a3c4aeec01a4da63b11371385e92211bd74a665c44254ecd

Download | Favorite | View