Name of the Vulnerable Software and Affected Versions: go (affected versions not specified)

Description: The issue arises from the default values of Session.config.KeepAliveInterval and Session.config.ConnectionWriteTimeout, which can cause timed out writes that are not handled properly by readers. This can lead to a Denial of Service when network congestion occurs, causing Stream.Read calls to hang indefinitely until the underlying Session is closed. Any conditions that cause network writes to stall for 10-30 seconds can trigger this issue, including high CPU contention, BGP reconvergence, etc.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.