Lucene search
RedHatRHSA-2023:6044HistoryOct 23, 2023 - 7:20 p.m.
(RHSA-2023:6044) Important: Cost Management security update
2023-10-2319:20:13
access.redhat.com
23
rhsa-2023-6044
golang
http/2
security update
cve-2023-44487
cve-2023-39325
ddos attack
rapid reset attack
0.732 High
EPSS
Percentile
98.1%
Security Fix(es):
-
golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) (CVE-2023-39325)
-
HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Related
redhat
redhat
(RHSA-2023:6116) Important: OpenShift API for Data Protection (OADP) 1.0.14 security and bug fix update
2023-10-25 14:14:58
(RHSA-2023:6121) Important: Migration Toolkit for Containers (MTC) 1.8.1 security and bug fix update
2023-10-25 15:54:35
(RHSA-2023:116467) Important: Red Hat OpenShift Enterprise security update
2023-06-27 13:22:54
osv
osv
Important: glibc security update
2023-10-06 22:57:06
Important: glibc security update
2023-10-05 00:00:00
Important: glibc security update
2023-10-05 00:00:00
nessus
nessus
Amazon Linux 2023 : compat-libpthread-nonshared, glibc, glibc-all-langpacks (ALAS2023-2023-359)
2023-10-03 00:00:00
RHEL 9 : glibc (RHSA-2023:5453)
2023-10-05 00:00:00
AlmaLinux 8 : glibc (ALSA-2023:5455)
2023-10-06 00:00:00
almalinux
almalinux
Important: glibc security update
2023-10-05 00:00:00
Important: glibc security update
2023-10-05 00:00:00
Moderate: grafana security update
2023-10-18 00:00:00
oraclelinux
oraclelinux
glibc security update
2023-10-12 00:00:00
glibc security update
2023-10-10 00:00:00
glibc security update
2023-10-12 00:00:00
rocky
rocky
glibc security update
2023-10-06 22:57:06
grafana security update
2023-10-24 18:35:47
toolbox security update
2023-11-11 23:00:15
rosalinux
rosalinux
Advisory ROSA-SA-2024-2332
2024-01-30 08:26:13
openvas
openvas
Debian: Security Advisory (DSA-5514-1)
2023-10-04 00:00:00
Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2024-1398)
2024-03-21 00:00:00
Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2023-3269)
2023-12-12 00:00:00
debian
debian
[SECURITY] [DSA 5514-1] glibc security update
2023-10-03 17:26:13
fedora
fedora
[SECURITY] Fedora 39 Update: glibc-2.38-6.fc39
2023-10-04 17:16:19
[SECURITY] Fedora 38 Update: glibc-2.37-10.fc38
2023-10-04 15:52:08
[SECURITY] Fedora 37 Update: glibc-2.36-14.fc37
2023-10-04 15:49:21
gentoo
gentoo
glibc: Multiple vulnerabilities
2023-10-04 00:00:00
ubuntu
ubuntu
GNU C Library vulnerabilities
2023-10-03 00:00:00
cloudfoundry
cloudfoundry
USN-6409-1: GNU C Library vulnerabilities | Cloud Foundry
2024-03-18 00:00:00
mageia
mageia
Updated glibc packages fix security and other bugs
2023-09-27 19:31:30
ubuntucve
ubuntucve
CVE-2023-44487
2023-10-10 00:00:00
freebsd
freebsd
traefik -- Resource exhaustion by malicious HTTP/2 client
2023-10-10 00:00:00
redhatcve
redhatcve
CVE-2023-39325
2023-10-11 17:12:30
CVE-2023-44487
2023-10-10 21:13:33
ibm
ibm
Security Bulletin: IBM DataPower Gateway vulnerable to HTTP/2 "Rapid Reset" Denial of Service (CVE-2023-44487, CVE-2023-39325)
2023-10-26 17:35:42
github
github
Traefik vulnerable to HTTP/2 request causing denial of service
2023-10-17 02:37:42