Bug 2358493 (CVE-2025-22871) - CVE-2025-22871 net/http: Request smuggling due to acceptance of invalid chunked data in net/http
Summary: CVE-2025-22871 net/http: Request smuggling due to acceptance of invalid chunk...
Keywords:
Status: NEW
Alias: CVE-2025-22871
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Product Security DevOps Team
QA Contact:
URL:
Whiteboard:
Depends On: 2363173 2363180 2363181 2363182 2358578 2363174 2363175
Blocks:
TreeView+ depends on / blocked
 
Reported: 2025-04-08 21:01 UTC by OSIDB Bzimport
Modified: 2025-06-12 06:32 UTC (History)
129 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHBA-2025:8624 0 None None None 2025-06-09 01:42:08 UTC
Red Hat Product Errata RHBA-2025:8971 0 None None None 2025-06-12 04:26:27 UTC
Red Hat Product Errata RHSA-2025:8476 0 None None None 2025-06-04 00:24:19 UTC
Red Hat Product Errata RHSA-2025:8477 0 None None None 2025-06-04 00:23:50 UTC
Red Hat Product Errata RHSA-2025:8478 0 None None None 2025-06-04 00:37:27 UTC
Red Hat Product Errata RHSA-2025:8539 0 None None None 2025-06-04 18:06:07 UTC
Red Hat Product Errata RHSA-2025:8601 0 None None None 2025-06-05 18:25:18 UTC
Red Hat Product Errata RHSA-2025:8632 0 None None None 2025-06-09 02:25:28 UTC
Red Hat Product Errata RHSA-2025:8633 0 None None None 2025-06-09 02:16:26 UTC
Red Hat Product Errata RHSA-2025:8634 0 None None None 2025-06-09 03:25:49 UTC
Red Hat Product Errata RHSA-2025:8665 0 None None None 2025-06-09 10:14:21 UTC
Red Hat Product Errata RHSA-2025:8666 0 None None None 2025-06-09 10:16:37 UTC
Red Hat Product Errata RHSA-2025:8667 0 None None None 2025-06-09 12:29:47 UTC
Red Hat Product Errata RHSA-2025:8680 0 None None None 2025-06-09 14:04:36 UTC
Red Hat Product Errata RHSA-2025:8682 0 None None None 2025-06-09 14:15:16 UTC
Red Hat Product Errata RHSA-2025:8685 0 None None None 2025-06-09 13:41:23 UTC
Red Hat Product Errata RHSA-2025:8689 0 None None None 2025-06-09 14:32:23 UTC
Red Hat Product Errata RHSA-2025:8691 0 None None None 2025-06-09 14:27:58 UTC
Red Hat Product Errata RHSA-2025:8737 0 None None None 2025-06-10 05:36:24 UTC
Red Hat Product Errata RHSA-2025:8915 0 None None None 2025-06-11 15:44:42 UTC
Red Hat Product Errata RHSA-2025:8916 0 None None None 2025-06-11 15:44:32 UTC
Red Hat Product Errata RHSA-2025:8918 0 None None None 2025-06-11 16:00:29 UTC
Red Hat Product Errata RHSA-2025:8974 0 None None None 2025-06-12 05:37:31 UTC
Red Hat Product Errata RHSA-2025:8975 0 None None None 2025-06-12 05:50:34 UTC
Red Hat Product Errata RHSA-2025:8982 0 None None None 2025-06-12 06:28:06 UTC
Red Hat Product Errata RHSA-2025:8983 0 None None None 2025-06-12 06:29:38 UTC
Red Hat Product Errata RHSA-2025:8984 0 None None None 2025-06-12 06:32:32 UTC

Description OSIDB Bzimport 2025-04-08 21:01:55 UTC 
The net/http package improperly accepts a bare LF as a line terminator in chunked data chunk-size lines. This can permit request smuggling if a net/http server is used in conjunction with a server that incorrectly accepts a bare LF as part of a chunk-ext.
Comment 5 Tom Sweeney 2025-04-30 20:41:55 UTC 
Could somebody please add a value to the "Fixed in Version" field?

@jwest ?
Comment 6 Tom Sweeney 2025-04-30 20:47:35 UTC 
And FWIW, I believe the "Fixed in Version" value should be: Go 1.24.2 and Go 1.23.8
Comment 7 Debarshi Ray 2025-05-01 23:58:42 UTC 
(In reply to Tom Sweeney from comment #6)
> And FWIW, I believe the "Fixed in Version" value should be: Go 1.24.2 and Go
> 1.23.8

Yes, that's right.  These are the commits:
https://github.com/golang/go/commit/ac1f5aa3d62efe21e65ce4dc30e6996d59acfbd0
https://github.com/golang/go/commit/15e01a2e43ecb8c7e15ff7e9d62fe3f10dcac931
Comment 8 Jeremy West 2025-05-05 14:19:13 UTC 
Hey Tom.  The "Fixed in Version" field is usually set by the engineering team based on which internal build contains the fix.
Comment 13 errata-xmlrpc 2025-06-04 00:23:41 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 10

Via RHSA-2025:8477 https://access.redhat.com/errata/RHSA-2025:8477
Comment 14 errata-xmlrpc 2025-06-04 00:24:10 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2025:8476 https://access.redhat.com/errata/RHSA-2025:8476
Comment 15 errata-xmlrpc 2025-06-04 00:37:18 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2025:8478 https://access.redhat.com/errata/RHSA-2025:8478
Comment 16 errata-xmlrpc 2025-06-04 18:05:56 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.4 Extended Update Support

Via RHSA-2025:8539 https://access.redhat.com/errata/RHSA-2025:8539
Comment 17 errata-xmlrpc 2025-06-05 18:25:08 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.4 Extended Update Support

Via RHSA-2025:8601 https://access.redhat.com/errata/RHSA-2025:8601
Comment 18 errata-xmlrpc 2025-06-09 02:16:17 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.4 Extended Update Support

Via RHSA-2025:8633 https://access.redhat.com/errata/RHSA-2025:8633
Comment 19 errata-xmlrpc 2025-06-09 02:25:19 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.4 Extended Update Support

Via RHSA-2025:8632 https://access.redhat.com/errata/RHSA-2025:8632
Comment 20 errata-xmlrpc 2025-06-09 03:25:40 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.4 Extended Update Support

Via RHSA-2025:8634 https://access.redhat.com/errata/RHSA-2025:8634
Comment 21 errata-xmlrpc 2025-06-09 10:14:12 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.4 Extended Update Support

Via RHSA-2025:8665 https://access.redhat.com/errata/RHSA-2025:8665
Comment 22 errata-xmlrpc 2025-06-09 10:16:28 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 10

Via RHSA-2025:8666 https://access.redhat.com/errata/RHSA-2025:8666
Comment 23 errata-xmlrpc 2025-06-09 12:29:38 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2025:8667 https://access.redhat.com/errata/RHSA-2025:8667
Comment 24 errata-xmlrpc 2025-06-09 13:41:15 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions
  Red Hat Enterprise Linux 8.8 Telecommunications Update Service

Via RHSA-2025:8685 https://access.redhat.com/errata/RHSA-2025:8685
Comment 25 errata-xmlrpc 2025-06-09 14:04:27 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions

Via RHSA-2025:8680 https://access.redhat.com/errata/RHSA-2025:8680
Comment 26 errata-xmlrpc 2025-06-09 14:15:08 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2025:8682 https://access.redhat.com/errata/RHSA-2025:8682
Comment 27 errata-xmlrpc 2025-06-09 14:27:49 UTC 
This issue has been addressed in the following products:

  Red Hat Advanced Cluster Management for Kubernetes 2.13 for RHEL 9

Via RHSA-2025:8691 https://access.redhat.com/errata/RHSA-2025:8691
Comment 28 errata-xmlrpc 2025-06-09 14:32:14 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.4 Extended Update Support

Via RHSA-2025:8689 https://access.redhat.com/errata/RHSA-2025:8689
Comment 30 errata-xmlrpc 2025-06-10 05:36:15 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions

Via RHSA-2025:8737 https://access.redhat.com/errata/RHSA-2025:8737
Comment 31 errata-xmlrpc 2025-06-11 15:44:24 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9

Via RHSA-2025:8916 https://access.redhat.com/errata/RHSA-2025:8916
Comment 32 errata-xmlrpc 2025-06-11 15:44:24 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 10

Via RHSA-2025:8915 https://access.redhat.com/errata/RHSA-2025:8915
Comment 33 errata-xmlrpc 2025-06-11 16:00:20 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8

Via RHSA-2025:8918 https://access.redhat.com/errata/RHSA-2025:8918
Comment 34 errata-xmlrpc 2025-06-12 05:37:22 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions
  Red Hat Enterprise Linux 8.8 Telecommunications Update Service

Via RHSA-2025:8974 https://access.redhat.com/errata/RHSA-2025:8974
Comment 35 errata-xmlrpc 2025-06-12 05:50:25 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.4 Extended Update Support

Via RHSA-2025:8975 https://access.redhat.com/errata/RHSA-2025:8975
Comment 36 errata-xmlrpc 2025-06-12 06:27:56 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions

Via RHSA-2025:8982 https://access.redhat.com/errata/RHSA-2025:8982
Comment 37 errata-xmlrpc 2025-06-12 06:29:29 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions
  Red Hat Enterprise Linux 8.8 Telecommunications Update Service

Via RHSA-2025:8983 https://access.redhat.com/errata/RHSA-2025:8983
Comment 38 errata-xmlrpc 2025-06-12 06:32:23 UTC 
This issue has been addressed in the following products:

  Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions

Via RHSA-2025:8984 https://access.redhat.com/errata/RHSA-2025:8984
Note You need to log in before you can comment on or make changes to this bug.