SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

Download | Alert*

OVAL

ALAS2-2020-1554 --- golang

ID: oval:org.secpod.oval:def:1700460	Date: (C)2020-11-24 (M)2023-12-20
Class: PATCH	Family: unix

Go before 1.14.8 and 1.15.x before 1.15.1 allows XSS because text/html is the default for CGI/FCGI handlers that lack a Content-Type header

Platform:

Amazon Linux 2

Product:

golang

Reference:

ALAS2-2020-1554