VDB

GCVE-VVD-MAGEIA-2020-468

GCVE-VVD-MAGEIA-2020-468
Advisory Published
Vulnetix · Advisory published December 21, 2020
This code was vulnerable to ping floods, potentially leading to a denial of service. The attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both (CVE-2019-9512). This code was vulnerable to a reset flood, potentially leading to a denial of service. The attacker opens a number of streams and sends an invalid request over each stream that should solicit a stream of RST_STREAM frames from the peer. Depending on how the peer queues the RST_STREAM frames, this can consume excess memory, CPU, or both (CVE-2019-9514).
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiagolang-googlecode-net0 (affected), 0-0.3.mga7 (unaffected)

References

Updated golang-googlecode-net package fixes security vulnerabilities
advisory
Updated golang-googlecode-net package fixes security vulnerabilities
issue
Updated golang-googlecode-net package fixes security vulnerabilities
advisory

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›