Lucene search

h2o -- multiple HTTP/2 vulnerabilities

🗓️ 13 Aug 2019 00:00:00Reported by FreeBSDType

h2o HTTP/2 vulnerabilities: Ping Flood, Reset Flood, and Settings Flood causing resource exhaustio

Reporter	Title	Published	Views	Family All 199
RedHat Linux	(RHSA-2019:2796) Important: skydive security update	17 Sep 201908:12	–	redhat
RedHat Linux	(RHSA-2019:2766) Important: Red Hat OpenShift Enterprise 4.1.15 gRPC security update	12 Sep 201918:20	–	redhat
RedHat Linux	(RHSA-2019:2861) Important: OpenShift Container Platform 4.1.18 gRPC security update	26 Sep 201917:11	–	redhat
RedHat Linux	(RHSA-2019:2726) Important: go-toolset:rhel8 security and bug fix update	10 Sep 201910:40	–	redhat
RedHat Linux	(RHSA-2019:3906) Important: OpenShift Container Platform 3.11 HTTP/2 security update	18 Nov 201916:18	–	redhat
RedHat Linux	(RHSA-2019:3245) Important: OpenShift Container Platform 4.2 security update	29 Oct 201917:28	–	redhat
RedHat Linux	(RHSA-2020:0406) Important: containernetworking-plugins security update	4 Feb 202018:54	–	redhat
RedHat Linux	(RHSA-2019:4273) Important: container-tools:1.0 security update	17 Dec 201909:20	–	redhat
RedHat Linux	(RHSA-2019:2682) Important: go-toolset-1.11 and go-toolset-1.11-golang security update	9 Sep 201908:15	–	redhat
RedHat Linux	(RHSA-2019:2661) Important: Red Hat OpenShift Container Platform 4.1 openshift RPM security update	11 Sep 201905:08	–	redhat

Vulners

Node

danny_ho oesRange<2.2.6

Source	Link
github	www.github.com/h2o/h2o/issues/2090
kb	www.kb.cert.org/vuls/id/605641/

OS	OS Version	Architecture	Package	Package Version	Filename
FreeBSD	any	noarch	h2o	2.2.6	UNKNOWN

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Aug 2019 00:00Current

1.7Low risk

Vulners AI Score1.7

CVSS27.8

CVSS37.5

EPSS0.91037