VYPR

Go modules package

net/http

pkg:golang/net/http

Vulnerabilities (1)

  • CVE-2023-45288HigApr 4, 2024
    affected < 1.21.9fixed 1.21.9

    An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request's headers exceed Ma