SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

Download | Alert*

OVAL

ALAS-2020-1445 --- golang

ID: oval:org.secpod.oval:def:1601213	Date: (C)2020-11-19 (M)2023-11-10
Class: PATCH	Family: unix

Go before 1.14.8 and 1.15.x before 1.15.1 allows XSS because text/html is the default for CGI/FCGI handlers that lack a Content-Type header

Platform:

Amazon Linux AMI

Product:

golang

Reference:

ALAS-2020-1445