{"id":51087,"date":"2023-04-25T19:23:57","date_gmt":"2023-04-25T10:23:57","guid":{"rendered":"https:\/\/jirak.net\/wp\/usn-6038-1-go-vulnerabilities\/"},"modified":"2023-04-26T00:34:11","modified_gmt":"2023-04-25T15:34:11","slug":"usn-6038-1-go-vulnerabilities","status":"publish","type":"post","link":"https:\/\/jirak.net\/wp\/usn-6038-1-go-vulnerabilities\/","title":{"rendered":"USN-6038-1: Go vulnerabilities"},"content":{"rendered":"<p>USN-6038-1: Go vulnerabilities<\/p>\n<p>It was discovered that the Go net\/http module incorrectly handled<br \/>\nTransfer-Encoding headers in the HTTP\/1 client. A remote attacker could<br \/>\npossibly use this issue to perform an HTTP Request Smuggling attack.<br \/>\n(CVE-2022-1705)<\/p>\n<p>It was discovered that Go did not properly manage memory under certain<br \/>\ncircumstances. An attacker could possibly use this issue to cause a panic<br \/>\nresulting into a denial of service. (CVE-2022-1962, CVE-2022-27664,<br \/>\nCVE-2022-28131, CVE-2022-30630, CVE-2022-30631, CVE-2022-30632,<br \/>\nCVE-2022-30633, CVE-2022-30635, CVE-2022-32189, CVE-2022-41715,<br \/>\nCVE-2022-41717, CVE-2023-24534, CVE-2023-24537)<\/p>\n<p>It was discovered that Go did not properly implemented the maximum size of<br \/>\nfile headers in Reader.Read. An attacker could possibly use this issue to<br \/>\ncause a panic resulting into a denial of service. (CVE-2022-2879)<\/p>\n<p>It was discovered that the Go net\/http module incorrectly handled query<br \/>\nparameters in requests forwarded by ReverseProxy. A remote attacker could<br \/>\npossibly use this issue to perform an HTTP Query Parameter Smuggling attack.<br \/>\n(CVE-2022-2880)<\/p>\n<p>It was discovered that Go did not properly manage the permissions for<br \/>\nFaccessat function. A attacker could possibly use this issue to expose<br \/>\nsensitive information. (CVE-2022-29526)<\/p>\n<p>It was discovered that Go did not properly generate the values for<br \/>\nticket_age_add in session tickets. An attacker could possibly use this<br \/>\nissue to observe TLS handshakes to correlate successive connections by<br \/>\ncomparing ticket ages during session resumption. (CVE-2022-30629)<\/p>\n<p>It was discovered that Go did not properly manage client IP addresses in<br \/>\nnet\/http. An attacker could possibly use this issue to cause ReverseProxy<br \/>\nto set the client IP as the value of the X-Forwarded-For header.<br \/>\n(CVE-2022-32148)<\/p>\n<p>It was discovered that Go did not properly validate backticks (`) as<br \/>\nJavascript string delimiters, and do not escape them as expected. An<br \/>\nattacker could possibly use this issue to inject arbitrary Javascript code<br \/>\ninto the Go template. (CVE-2023-24538)<br \/>\nSource: <a href=\"https:\/\/ubuntu.com\/security\/notices\/USN-6038-1\" target=\"_blank\" rel=\"noopener\">USN-6038-1: Go vulnerabilities<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<div class=\"mh-excerpt\"><p>USN-6038-1: Go vulnerabilities It was discovered that the Go net\/http module incorrectly handled Transfer-Encoding headers in the HTTP\/1 client. A remote attacker could possibly use this issue to perform an HTTP Request Smuggling attack. (CVE-2022-1705) It was discovered that Go did not properly manage memory under certain circumstances. An attacker could possibly use this issue to cause a panic resulting into a denial of service. (CVE-2022-1962, CVE-2022-27664, CVE-2022-28131, CVE-2022-30630, CVE-2022-30631, CVE-2022-30632, CVE-2022-30633, CVE-2022-30635, CVE-2022-32189, CVE-2022-41715, CVE-2022-41717, CVE-2023-24534, CVE-2023-24537) It was discovered that Go did not properly implemented the maximum size of file headers in Reader.Read. An attacker could possibly use this issue to cause a panic resulting into a denial of service. (CVE-2022-2879) It was discovered that the Go net\/http module incorrectly handled query parameters in requests forwarded by ReverseProxy. A remote attacker could possibly use this issue to perform <a class=\"mh-excerpt-more\" href=\"https:\/\/jirak.net\/wp\/usn-6038-1-go-vulnerabilities\/\" title=\"USN-6038-1: Go vulnerabilities\">[ more&#8230; ]<\/a><\/p>\n<\/div>","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[586],"tags":[587],"class_list":["post-51087","post","type-post","status-publish","format-standard","hentry","category-ubuntu-usn","tag-ubuntu-usn"],"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts\/51087","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/comments?post=51087"}],"version-history":[{"count":1,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts\/51087\/revisions"}],"predecessor-version":[{"id":51088,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts\/51087\/revisions\/51088"}],"wp:attachment":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/media?parent=51087"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/categories?post=51087"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/tags?post=51087"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}