Lucene search
+L

8 matches found

oraclelinux
oraclelinux
added 2024/04/26 12:0 a.m.29 views

cri-o security update

cri-o 1.26.4-2 - Address CVE-2024-24786 cri-tools 1.26.1-5 - Address CVE-2024-24786 etcd 3.5.10-3 - Address protobuf CVE-2024-24786 3.5.10-1 - Added Oracle specific build files istio 1.17.8-3 - Address protobuf CVE-2024-24786 - Backport from 1.19.7 to address CVE-2024-23322, CVE-2024-23323,...

7.5CVSS7.4AI score0.01262EPSS
Exploits0
oraclelinux
oraclelinux
added 2024/04/26 12:0 a.m.33 views

cri-o security update

cri-o 1.26.4-2 - Address CVE-2024-24786 cri-tools 1.26.1-5 - Address CVE-2024-24786 etcd 3.5.10-3 - Address protobuf CVE-2024-24786 3.5.10-1 - Added Oracle specific build files istio 1.17.8-3 - Address protobuf CVE-2024-24786 - Backport from 1.19.7 to address CVE-2024-23322, CVE-2024-23323,...

7.5CVSS7.4AI score0.01262EPSS
Exploits0
nessus
nessus
added 2024/03/06 12:0 a.m.24 views

Amazon Linux 2 : ecs-service-connect-agent (ALASECS-2024-034)

The version of ecs-service-connect-agent installed on the remote host is prior to v1.27.3.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2ECS-2024-034 advisory. Envoy is a high-performance edge/middle/service proxy. Envoy will crash when certain timeouts happ...

8.6CVSS6.7AI score0.00751EPSS
Exploits0References12
amazon
amazon
added 2024/03/05 12:0 a.m.10 views

Important: ecs-service-connect-agent

Issue Overview: Envoy is a high-performance edge/middle/service proxy. Envoy will crash when certain timeouts happen within the same interval. The crash occurs when the following are true: 1. hedgeonpertrytimeout is enabled, 2. pertryidletimeout is enabled it can only be done in configuration, 3...

8.6CVSS7.1AI score0.00751EPSS
Exploits0
circl
circl
added 2024/02/10 12:21 a.m.4 views

CVE-2024-23323

creationtimestamp| type| source ---|---|--- 2024-02-10 00:21:26+00:00| seen| https://t.me/ctinow/182356 2024-03-03 10:46:24+00:00| seen| https://t.me/ctinow/198667 2024-04-26 06:13:39+00:00| seen| https://t.me/arpsyndicate/4895...

5.3CVSS6.2AI score0.00504EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2024/02/09 10:50 p.m.43 views

CVE-2024-23323 Excessive CPU usage when URI template matcher is configured using regex in Envoy

Envoy is a high-performance edge/middle/service proxy. The regex expression is compiled for every request and can result in high CPU usage and increased request latency when multiple routes are configured with such matchers. This issue has been addressed in released 1.29.1, 1.28.1, 1.27.3, and...

4.3CVSS6.7AI score0.00504EPSS
Exploits0References2
cvelist
cvelist
added 2024/02/09 10:50 p.m.15 views

CVE-2024-23323 Excessive CPU usage when URI template matcher is configured using regex in Envoy

Envoy is a high-performance edge/middle/service proxy. The regex expression is compiled for every request and can result in high CPU usage and increased request latency when multiple routes are configured with such matchers. This issue has been addressed in released 1.29.1, 1.28.1, 1.27.3, and...

4.3CVSS5.9AI score0.00504EPSS
Exploits0References2
cve
cve
added 2024/02/09 10:50 p.m.63 views

CVE-2024-23323

Envoy CVE-2024-23323 affects the Envoy proxy where the regex matcher is compiled per request, causing high CPU and increased latency when multiple routes use such matchers. The issue has specific fixes in released versions 1.29.1, 1.28.1, 1.27.3, and 1.26.7; upgrading is advised. The provided doc...

5.3CVSS5AI score0.00504EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder