Debian Linux Security Advisory 4534-1 - It was discovered that the Go programming language did accept and normalize invalid HTTP/1.1 headers with a space before the colon, which could lead to filter bypasses or request smuggling in some setups.
515d09c92323347df95ea4299a8beeffb3a11e9d0696f723a3545b7615130b5d