LIN1018-9550 : Security Advisory - go - CVE-2022-27664
Created: Jul 21, 2022
Updated: Sep 21, 2022
Resolved Date: Sep 21, 2022
Found In Version: 10.18.44.1
Severity: Standard
Applicable for: Wind River Linux LTS 18
Component/s: Userspace
Description
In net/http in Go before 1.18.6 and 1.19.x before 1.19.1, attackers can cause a denial of service because an HTTP/2 connection can hang during closing if shutdown were preempted by a fatal error.
https://nvd.nist.gov/vuln/detail/CVE-2022-27664