LIN10-9369 : Security Advisory - go - CVE-2021-44716
Created: Dec 9, 2021
Updated: Jan 3, 2022
Resolved Date: Dec 16, 2021
Found In Version: 10.17.41.1
Severity: Standard
Applicable for: Wind River Linux LTS 17
Component/s: Userspace
Description
net/http in Go before 1.16.12 and 1.17.x before 1.17.5 allows uncontrolled memory consumption in the header canonicalization cache via HTTP/2 requests.
https://nvd.nist.gov/vuln/detail/CVE-2021-44716
