Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

net/http: Denial of Service vulnerabilities in the HTTP/2 implementation [1.11 backport] #33630

Closed
gopherbot opened this issue Aug 13, 2019 · 1 comment
Labels
CherryPickApproved Used during the release process for point releases FrozenDueToAge Security
Milestone

Comments

@gopherbot
Copy link

@dmitshur requested issue #33606 to be considered for backport to the next 1.11 minor release.

@gopherbot Please backport this to 1.12 and 1.11. This was a security problem.

@gopherbot gopherbot added the CherryPickCandidate Used during the release process for point releases label Aug 13, 2019
@gopherbot gopherbot added this to the Go1.11.14 milestone Aug 13, 2019
@dmitshur dmitshur modified the milestones: Go1.11.14, Go1.11.13 Aug 13, 2019
@dmitshur
Copy link
Contributor

Fixed by e152b01.

@dmitshur dmitshur added Proposal-Accepted CherryPickApproved Used during the release process for point releases Security and removed CherryPickCandidate Used during the release process for point releases Proposal-Accepted labels Aug 13, 2019
@golang golang locked and limited conversation to collaborators Aug 12, 2020
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
CherryPickApproved Used during the release process for point releases FrozenDueToAge Security
Projects
None yet
Development

No branches or pull requests

2 participants