Sign in Subscribe

← All advisories

Unrated severityNVD Advisory· Published Sep 30, 2019· Updated Aug 5, 2024

CVE-2019-16276

CVE-2019-16276

Description

Go before 1.12.10 and 1.13.x before 1.13.1 allow HTTP Request Smuggling.

Affected products

5

Go/Godescription
osv-coords4 versions
pkg:rpm/opensuse/go1.12&distro=openSUSE%20Leap%2015.0 pkg:rpm/opensuse/go1.12&distro=openSUSE%20Leap%2015.1 pkg:rpm/opensuse/go1.12&distro=openSUSE%20Tumbleweed pkg:rpm/opensuse/go1.13&distro=openSUSE%20Tumbleweed
< 1.12.12-lp150.11.1+ 3 more
- (no CPE)range: < 1.12.12-lp150.11.1
- (no CPE)range: < 1.12.12-lp151.2.25.1
- (no CPE)range: < 1.12.17-4.8
- (no CPE)range: < 1.13.15-2.6

Patches

2

b17fd8e49d24

[release-branch.go1.13-security] go1.13.1

https://github.com/golang/goFilippo ValsordaSep 25, 2019via osv

1 file changed · +1 −1

VERSION+1 −1 modified

@@ -1 +1 @@
-go1.13
\ No newline at end of file
+go1.13.1
\ No newline at end of file

6c15c7cce718

[release-branch.go1.12-security] go1.12.10

https://github.com/golang/goFilippo ValsordaSep 25, 2019via osv

1 file changed · +1 −1

VERSION+1 −1 modified

@@ -1 +1 @@
-go1.12.9
\ No newline at end of file
+go1.12.10
\ No newline at end of file

Vulnerability mechanics

Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.

References

13

lists.opensuse.org/opensuse-security-announce/2019-11/msg00043.htmlmitrevendor-advisoryx_refsource_SUSE
lists.opensuse.org/opensuse-security-announce/2019-11/msg00044.htmlmitrevendor-advisoryx_refsource_SUSE
access.redhat.com/errata/RHSA-2020:0101mitrevendor-advisoryx_refsource_REDHAT
access.redhat.com/errata/RHSA-2020:0329mitrevendor-advisoryx_refsource_REDHAT
access.redhat.com/errata/RHSA-2020:0652mitrevendor-advisoryx_refsource_REDHAT
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LULL72EUUKIY4NWDZVJVN2LIB4MXHS5P/mitrevendor-advisoryx_refsource_FEDORA
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O7GMJ3VXF5RXK2C7CL66KJ6XOOTOL5BJ/mitrevendor-advisoryx_refsource_FEDORA
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Q5MD2F7ATWSTB45ZJIPJHBAAHVRGRAKG/mitrevendor-advisoryx_refsource_FEDORA
github.com/golang/go/issues/34540mitrex_refsource_CONFIRM
groups.google.com/forum/mitrex_refsource_MISC
lists.debian.org/debian-lts-announce/2021/03/msg00014.htmlmitremailing-listx_refsource_MLIST
lists.debian.org/debian-lts-announce/2021/03/msg00015.htmlmitremailing-listx_refsource_MLIST
security.netapp.com/advisory/ntap-20191122-0004/mitrex_refsource_CONFIRM

News mentions

0

No linked articles in our index yet.