| Release | Version |
|---|---|
| bullseye | 1:0.0+git20210119.5f4716e+dfsg-4 |
| bookworm | 1:0.7.0+dfsg-1 |
| sid | 1:0.7.0+dfsg-1 |
| Bug | bullseye | bookworm | sid | Description |
|---|---|---|---|---|
| CVE-2022-41723 | vulnerable | fixed | fixed | A maliciously crafted HTTP/2 stream could cause excessive CPU consumpt ... |
| CVE-2021-44716 | vulnerable (no DSA) | fixed | fixed | net/http in Go before 1.16.12 and 1.17.x before 1.17.5 allows uncontro ... |
| Bug | Description |
|---|---|
| CVE-2022-41721 | A request smuggling attack is possible when using MaxBytesHandler. Whe ... |
| CVE-2021-33194 | golang.org/x/net before v0.0.0-20210520170846-37e1c6afe023 allows atta ... |
| CVE-2021-31525 | net/http in Go before 1.15.12 and 1.16.x before 1.16.4 allows remote a ... |