Lucene search
RedHatRHSA-2023:6788HistoryNov 08, 2023 - 2:03 a.m.
(RHSA-2023:6788) Important: Red Hat OpenShift GitOps security update
2023-11-0802:03:11
access.redhat.com
18
red hat
openshift
gitops
security update
continuous deployment
cloud native
golang
http/2
ddos attack
cve
Red Hat Openshift GitOps is a declarative way to implement continuous deployment for cloud native applications.
Security Fix(es):
-
golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) (CVE-2023-39325)
-
HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Related
nessus
nessus
RHEL 9 : toolbox (RHSA-2023:6077)
2023-10-24 00:00:00
Oracle Linux 8 : go-toolset:ol8 (ELSA-2023-5721)
2023-10-18 00:00:00
Oracle Linux 8 : conmon (ELSA-2023-13028)
2023-12-08 00:00:00
redhat
redhat
(RHSA-2023:5679) Important: OpenShift Container Platform 4.12.39 packages and security update
2023-10-18 03:05:37
(RHSA-2023:6220) Important: Errata Advisory for Red Hat OpenShift GitOps v1.10.1 security update
2023-10-31 18:20:10
(RHSA-2023:6243) Important: openshift-gitops-kam security update
2023-11-01 13:55:58
oraclelinux
oraclelinux
olcne security update
2023-12-07 00:00:00
conmon security update
2023-12-19 00:00:00
conmon security update
2023-12-19 00:00:00
osv
osv
Traefik vulnerable to HTTP/2 request causing denial of service
2023-10-17 02:37:42
Moderate: grafana security update
2023-10-24 18:35:47
Moderate: grafana security update
2023-10-18 00:00:00
openvas
openvas
openSUSE: Security Advisory for go1.21 (SUSE-SU-2023:4069-1)
2024-03-04 00:00:00
openSUSE: Security Advisory for go1.20 (SUSE-SU-2023:4068-1)
2024-03-04 00:00:00
Fedora: Security Advisory for golang (FEDORA-2023-822aab0a5a)
2023-11-05 00:00:00
almalinux
almalinux
Moderate: grafana security update
2023-10-18 00:00:00
Moderate: grafana security update
2023-10-18 00:00:00
Important: go-toolset:rhel8 security update
2023-10-16 00:00:00
rocky
rocky
grafana security update
2023-10-24 18:35:47
toolbox security update
2023-11-11 23:00:15
go-toolset:rhel8 security update
2023-10-24 18:35:47
ubuntucve
ubuntucve
CVE-2023-44487
2023-10-10 00:00:00
CVE-2024-4438
2024-05-08 00:00:00
ibm
ibm
Security Bulletin: IBM Cloud Kubernetes Service is affected by Kubernetes API server security vulnerabilities (CVE-2023-39325 and CVE-2023-44487)
2023-12-08 09:00:02
freebsd
freebsd
traefik -- Resource exhaustion by malicious HTTP/2 client
2023-10-10 00:00:00
redhatcve
redhatcve
github
github
Traefik vulnerable to HTTP/2 request causing denial of service
2023-10-17 02:37:42
amazon
amazon
Important: golang
2023-10-16 13:45:00
Important: golang
2023-10-16 13:45:00
cve
cve
CVE-2024-4438
2024-05-08 09:15:09
CVE-2023-6596
2024-04-25 16:15:10
fedora
fedora
[SECURITY] Fedora 37 Update: golang-1.20.10-3.fc37
2023-10-29 01:47:29
[SECURITY] Fedora 39 Update: golang-1.21.3-1.fc39
2023-11-03 19:02:38
[SECURITY] Fedora 38 Update: golang-1.20.10-2.fc38
2023-10-29 01:34:45
cvelist
cvelist
nvd
nvd
CVE-2023-6596
2024-04-25 16:15:10
CVE-2024-4438
2024-05-08 09:15:09
veracode
veracode
Denial Of Service (DoS)
2023-10-13 09:18:05