13 matches found
CBL Mariner 2.0 Security Update: coredns (CVE-2024-53259)
The version of coredns installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-53259 advisory. - quic-go is an implementation of the QUIC protocol in Go. An off-path attacker can inject an ICMP Packet Too...
CVE-2024-53259 affecting package coredns for versions less than 1.11.4-1
CVE-2024-53259 affecting package coredns for versions less than 1.11.4-1. A patched version of the package is available...
CVE-2024-53259 affecting package coredns for versions less than 1.11.1-15
CVE-2024-53259 affecting package coredns for versions less than 1.11.1-15. A patched version of the package is available...
Important: Red Hat Security Advisory: VolSync 0.10.2 for RHEL 9
VolSync v0.10.2 general availability release images, which provide enhancements, security fixes, and updated container images. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...
GO-2024-3342 Traefik affected by CVE-2024-53259 in github.com/traefik/traefik
Traefik affected by CVE-2024-53259 in github.com/traefik/traefik...
Traefik affected by CVE-2024-53259
There is a potential vulnerability in Traefik managing HTTP/3 connections. More details in the CVE-2024-53259. Patches - https://github.com/traefik/traefik/releases/tag/v2.11.15 - https://github.com/traefik/traefik/releases/tag/v3.2.2 Workarounds No workaround For more information If you have any...
GHSA-HXR6-2P24-HF98 Traefik affected by CVE-2024-53259
There is a potential vulnerability in Traefik managing HTTP/3 connections. More details in the CVE-2024-53259. Patches - https://github.com/traefik/traefik/releases/tag/v2.11.15 - https://github.com/traefik/traefik/releases/tag/v3.2.2 Workarounds No workaround For more information If you have any...
teleport-17.0.3-1.1 on GA media (moderate)
teleport-17.0.3-1.1 on GA media Announcement ID: openSUSE-SU-2024:14544-1 Rating: moderate Cross-References: CVE-2024-53259 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...
CVE-2024-53259 vulnerabilities
Vulnerabilities for packages: kubernetes-dns-node-cache, q, buf, frp, caddy, k3s, spegel, cloudflared, coredns...
CVE-2024-53259
quic-go is an implementation of the QUIC protocol in Go. An off-path attacker can inject an ICMP Packet Too Large packet. Since affected quic-go versions used IPPMTUDISCDO, the kernel would then return a "message too large" error on sendmsg, i.e. when quic-go attempts to send a packet that exceed...
CVE-2024-53259
CVE-2024-53259 affects the quic-go QUIC implementation. An off-path attacker can inject an ICMP Packet Too Large when IP_PMTUDISC_DO is used, causing the kernel to return a “message too large” error on sendmsg if a QUIC packet exceeds the MTU claimed in the ICMP message. This can disrupt a QUIC c...
CVE-2024-53259 quic-go affected by an ICMP Packet Too Large Injection Attack on Linux
quic-go is an implementation of the QUIC protocol in Go. An off-path attacker can inject an ICMP Packet Too Large packet. Since affected quic-go versions used IPPMTUDISCDO, the kernel would then return a "message too large" error on sendmsg, i.e. when quic-go attempts to send a packet that exceed...
CVE-2024-53259
quic-go is an implementation of the QUIC protocol in Go. An off-path attacker can inject an ICMP Packet Too Large packet. Since affected quic-go versions used IPPMTUDISCDO, the kernel would then return a "message too large" error on sendmsg, i.e. when quic-go attempts to send a packet that exceed...