Ubuntu 20.04 18.04 Go Networking Critical Access USN-8416-1
Jun 09, 2026
•
LinuxSecurity Advisories
1 - 2 min read
Topics Covered
Go Networking could allow unintended access to network services.
==========================================================================
Ubuntu Security Notice USN-8416-1
June 09, 2026
golang-golang-x-net-dev vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 20.04 LTS
- Ubuntu 18.04 LTS
Summary:
Go Networking could allow unintended access to network services.
Software Description:
- golang-golang-x-net-dev: Supplementary Go networking development files
Details:
It was discovered that Go Networking incorrectly handled certain
Punycode-encoded labels in the idna package. An attacker could possibly use
this issue to bypass hostname-based access restrictions.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 20.04 LTS
golang-go.net-dev 1:0.0+git20190811.74dc4d7+dfsg-1ubuntu0.1~esm3
Available with Ubuntu Pro
golang-golang-x-net-dev 1:0.0+git20190811.74dc4d7+dfsg-1ubuntu0.1~esm3
Available with Ubuntu Pro
Ubuntu 18.04 LTS
golang-go.net-dev 1:0.0+git20170629.c81e7f2+dfsg-2ubuntu0.1~esm3
Available with Ubuntu Pro
golang-golang-x-net-dev 1:0.0+git20170629.c81e7f2+dfsg-2ubuntu0.1~esm3
Available with Ubuntu Pro
In general, a standard system update will make all the necessary changes.
References:
https://ubuntu.com/security/notices/USN-8416-1
CVE-2026-39821
PREVIOUS
NEXT
Ubuntu 20.04 18.04 Go Networking Critical Access USN-8416-1
ubuntu
June 9, 2026
Go Networking could allow unintended access to network services.
Summary
A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS Summary: Go Networking could allow unintended access to network services. Software Description: - golang-golang-x-net-dev: Supplementary Go networking development files Details: It was discovered that Go Networking incorrectly handled certain Punycode-encoded labels in the idna package. An attacker could possibly use this issue to bypass hostname-based access restrictions.
Topics Covered
Update Instructions
The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS golang-go.net-dev 1:0.0+git20190811.74dc4d7+dfsg-1ubuntu0.1~esm3 Available with Ubuntu Pro golang-golang-x-net-dev 1:0.0+git20190811.74dc4d7+dfsg-1ubuntu0.1~esm3 Available with Ubuntu Pro Ubuntu 18.04 LTS golang-go.net-dev 1:0.0+git20170629.c81e7f2+dfsg-2ubuntu0.1~esm3 Available with Ubuntu Pro golang-golang-x-net-dev 1:0.0+git20170629.c81e7f2+dfsg-2ubuntu0.1~esm3 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes.
References
https://ubuntu.com/security/notices/USN-8416-1
CVE-2026-39821
Severity
critical
Lowest
Low
Medium
High
Critical
Ubuntu Security Notice USN-8416-1
Topics Covered
Package Information
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!