The package github.com/pires/go-proxyproto before 0.6.0 are vulnerable to Denial of Service (DoS) via creating connections without the proxy protocol header.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Go-proxyproto | Go-proxyproto_project | * | 0.6.0 (excluding) |
Golang-github-pires-go-proxyproto | Ubuntu | hirsute | * |
Golang-github-pires-go-proxyproto | Ubuntu | impish | * |
Golang-github-pires-go-proxyproto | Ubuntu | kinetic | * |
Golang-github-pires-go-proxyproto | Ubuntu | lunar | * |
Golang-github-pires-go-proxyproto | Ubuntu | mantic | * |
Golang-github-pires-go-proxyproto | Ubuntu | trusty | * |
Golang-github-pires-go-proxyproto | Ubuntu | xenial | * |