Security News

Cybersecurity news aggregator

🔓
MEDIUM Vulnerabilities Microsoft Security Response Center

CVE-2026-33814 Infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE in net/http/internal/http2 in golang.org/x/net

cve-2026-33814network
  • What: Infinite loop in HTTP/2 transport due to bad SETTINGS_MAX_FRAME_SIZE
  • Impact: Could cause denial of service in Go-based applications
Read Full Article →

We use optional cookies to improve your experience on our websites, such as through social media connections, and to display personalized advertising based on your online activity. If you reject optional cookies, only cookies necessary to provide you the services will be used. You may change your selection by clicking “Manage Cookies” at the bottom of the page. Privacy Statement Third-Party Cookies Accept Reject Manage cookies MSRC  Customer Guidance  Security Update Guide  Vulnerabilities  CVE-2026-33814 Your Privacy Choices Consumer Health Privacy

Related Articles

INFO CVE-2026-23276 net: add xmit recursion limit to tunnel xmit functions Microsoft Security Response Center MEDIUM CVE-2026-33811 Crash when handling long CNAME response in net Microsoft Security Response Center INFO CVE-2026-23918 Apache HTTP Server: http2: double free and possible RCE on early reset Microsoft Security Response Center INFO CVE-2026-27141 Sending certain HTTP/2 frames can cause a server to panic in golang.org/x/net Microsoft Security Response Center
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn