Описание
ELSA-2023-5924: varnish security update (IMPORTANT)
[6.6.2-3.el9_2.1]
- Add parameters h2_rst_allowance and h2_rst_allowance_period to mitigate CVE-2023-44487
- Resolves: RHEL-12818
Обновленные пакеты
Oracle Linux 9
Oracle Linux aarch64
varnish
6.6.2-3.el9_2.1
varnish-devel
6.6.2-3.el9_2.1
varnish-docs
6.6.2-3.el9_2.1
Oracle Linux x86_64
varnish
6.6.2-3.el9_2.1
varnish-devel
6.6.2-3.el9_2.1
varnish-docs
6.6.2-3.el9_2.1
Связанные CVE
Связанные уязвимости
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
The HTTP/2 protocol allows a denial of service (server resource consum ...