Vulnerability of the JWE, JWS, JWT go-jose standards set implementation package for Go programming language is related to incorrect processing of highly compressed input data. Exploitation of the vulnerability could allow An attacker acting remotely to cause a denial of service Vulnerability of net/http and net/http2 libraries of Go programming language (in terms of implementation of HTTP/2 protocol) is related to uncontrolled processing of highly compressed input data. HTTP/2) is related to uncontrolled resource consumption due to incorrect end-of-header detection during CONT/2 frame processing. header when processing CONTINUATION frames. Exploitation of the vulnerability could allow an attacker, acting remotely, to cause a denial of…Read More