Описание
Security update for kubevirt, virt-api-container, virt-controller-container, virt-exportproxy-container, virt-exportserver-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container, virt-pr-helper-container
This update for kubevirt, virt-api-container, virt-controller-container, virt-exportproxy-container, virt-exportserver-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container, virt-pr-helper-container fixes the following issues:
Update to version 1.1.0
- Release notes https://github.com/kubevirt/kubevirt/releases/tag/v1.1.0
Update to version 1.0.1
- Release notes https://github.com/kubevirt/kubevirt/releases/tag/v1.0.1
Список пакетов
SUSE Linux Enterprise Micro 5.5
SUSE Linux Enterprise Module for Containers 15 SP5
openSUSE Leap 15.5
Ссылки
- Link for SUSE-SU-2023:4624-1
- E-Mail link for SUSE-SU-2023:4624-1
- SUSE Security Ratings
- SUSE CVE CVE-2023-44487 page
Описание
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
Затронутые продукты
Ссылки
- CVE-2023-44487
- SUSE Bug 1216109
- SUSE Bug 1216123
- SUSE Bug 1216169
- SUSE Bug 1216171
- SUSE Bug 1216174
- SUSE Bug 1216176
- SUSE Bug 1216181
- SUSE Bug 1216182
- SUSE Bug 1216190