Описание
ELSA-2022-0001: grafana security update (IMPORTANT)
[7.5.9-5]
- resolve CVE-2021-44716 golang: net/http: limit growth of header canonicalization cache
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
grafana
7.5.9-5.el8_5
Oracle Linux x86_64
grafana
7.5.9-5.el8_5
Связанные CVE
Связанные уязвимости
CVSS3: 7.5
ubuntu
около 4 лет назад
net/http in Go before 1.16.12 and 1.17.x before 1.17.5 allows uncontrolled memory consumption in the header canonicalization cache via HTTP/2 requests.
CVSS3: 7.5
redhat
около 4 лет назад
net/http in Go before 1.16.12 and 1.17.x before 1.17.5 allows uncontrolled memory consumption in the header canonicalization cache via HTTP/2 requests.
CVSS3: 7.5
nvd
около 4 лет назад
net/http in Go before 1.16.12 and 1.17.x before 1.17.5 allows uncontrolled memory consumption in the header canonicalization cache via HTTP/2 requests.
CVSS3: 7.5
debian
около 4 лет назад
net/http in Go before 1.16.12 and 1.17.x before 1.17.5 allows uncontro ...