Lucene search
AlmaLinuxALSA-2024:1962HistoryApr 23, 2024 - 12:00 a.m.
Important: go-toolset:rhel8 security update
2024-04-2300:00:00
errata.almalinux.org
7
golang
security update
rhel8
dos
cve-2023-45288
libraries
Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang.
Security Fix(es):
- golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS (CVE-2023-45288)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Related
nessus
nessus
Oracle Linux 9 : golang (ELSA-2024-1963)
2024-04-24 00:00:00
AlmaLinux 8 : go-toolset:rhel8 (ALSA-2024:1962)
2024-04-29 00:00:00
SUSE SLES12 Security Update : go1.22 (SUSE-SU-2024:1160-1)
2024-04-09 00:00:00
redhat
redhat
(RHSA-2024:2936) Important: go-toolset:rhel8 security update
2024-05-21 04:45:27
(RHSA-2024:2892) Important: go-toolset-1.19-golang security update
2024-05-16 12:05:07
freebsd
freebsd
forgejo -- HTTP/2 CONTINUATION flood in net/http
2024-04-04 00:00:00
go -- http2: close connections when receiving too many headers
2024-04-03 00:00:00
ubuntucve
ubuntucve
CVE-2023-45288
2024-03-27 00:00:00
mageia
mageia
Updated golang packages fix security vulnerability
2024-04-13 19:56:38
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0128)
2024-04-15 00:00:00
openSUSE: Security Advisory for go1.22 (SUSE-SU-2024:1121-1)
2024-04-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:1122-1)
2024-05-07 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-45288 affecting package moby-engine for versions less than 24.0.9-2
2024-05-06 17:48:02
CVE-2023-45288 affecting package kubernetes for versions less than 1.28.4-7
2024-05-14 05:06:12
CVE-2023-45288 affecting package kubevirt for versions less than 0.59.0-16
2024-05-14 05:06:12
veracode
veracode
Denial Of Service (DOS)
2024-04-05 07:19:44
osv
osv
Traefik affected by HTTP/2 CONTINUATION flood in net/http
2024-04-15 18:14:51
Important: git-lfs security update
2024-05-09 18:50:42
net/http, x/net/http2: close connections when receiving too many headers
2024-04-04 21:30:32
cve
cve
CVE-2023-45288
2024-04-04 21:15:16
cvelist
cvelist
CVE-2023-45288 HTTP/2 CONTINUATION flood in net/http
2024-04-04 20:37:30
almalinux
almalinux
Important: golang security update
2024-04-23 00:00:00
Important: git-lfs security update
2024-04-29 00:00:00
Important: git-lfs security update
2024-05-06 00:00:00
rocky
rocky
git-lfs security update
2024-05-09 18:50:42
go-toolset:rhel8 security update
2024-05-06 13:04:21
git-lfs security update
2024-05-10 14:32:42
ibm
ibm
Security Bulletin: IBM Storage Fusion is vulnerable to denial of service due to Golang Go's net/http and x/net/http2.
2024-05-11 16:53:43
redhatcve
redhatcve
CVE-2023-45288
2024-04-03 20:53:54
alpinelinux
alpinelinux
CVE-2023-45288
2024-04-04 21:15:16
oraclelinux
oraclelinux
golang security update
2024-04-23 00:00:00
go-toolset:ol8 security update
2024-04-23 00:00:00
git-lfs security update
2024-05-08 00:00:00
github
github
net/http, x/net/http2: close connections when receiving too many headers
2024-04-04 21:30:32
Traefik affected by HTTP/2 CONTINUATION flood in net/http
2024-04-15 18:14:51
cgr
cgr
CVE-2023-45288 vulnerabilities
2024-05-19 03:07:16
githubexploit
githubexploit
Exploit for CVE-2023-45288
2024-04-06 06:33:45
debiancve
debiancve
CVE-2023-45288
2024-04-04 21:15:16
wolfi
wolfi
CVE-2023-45288 vulnerabilities
2024-05-28 21:07:31
fedora
fedora
[SECURITY] Fedora 40 Update: kubernetes-1.29.4-1.fc40
2024-04-25 01:01:14
redos
redos
ROS-20240422-05
2024-04-22 00:00:00
arista
arista
Security Advisory 0094
2024-04-05 00:00:00
thn
thn
New HTTP/2 Vulnerability Exposes Web Servers to DoS Attacks
2024-04-04 11:15:00
cert
cert
HTTP/2 CONTINUATION frames can be utilized for DoS attacks
2024-04-03 00:00:00