CVE-2022-41723

Опубликовано: 28 фев. 2023

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 7.5

Описание

A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of small requests.

Релиз	Статус	Примечание
bionic	not-affected
devel	not-affected
esm-apps/bionic	not-affected
esm-apps/noble	not-affected
esm-apps/xenial	not-affected
esm-infra/focal	not-affected
focal	not-affected
jammy	not-affected
kinetic	not-affected
lunar	not-affected

Показывать по

Релиз	Статус	Примечание
bionic	DNE
devel	DNE
esm-infra/focal	DNE
focal	DNE
jammy	DNE
lunar	DNE
mantic	DNE
noble	DNE
oracular	DNE
plucky	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support
devel	DNE
esm-infra-legacy/trusty	needed
esm-infra/bionic	needed
esm-infra/focal	DNE
esm-infra/xenial	needed
focal	DNE
jammy	DNE
lunar	DNE
mantic	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support
devel	DNE
esm-apps/bionic	needed
esm-apps/jammy	needed
esm-apps/xenial	needed
esm-infra/focal	needed
focal	ignored	end of standard support, was needed
jammy	needed
lunar	DNE
mantic	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
devel	DNE
esm-infra/focal	needed
focal	ignored	end of standard support, was needed
jammy	DNE
lunar	DNE
mantic	DNE
noble	DNE
oracular	DNE
plucky	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support
devel	DNE
esm-apps/bionic	needed
esm-apps/focal	needed
focal	ignored	end of standard support, was needed
jammy	DNE
lunar	DNE
mantic	DNE
noble	DNE
oracular	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
devel	DNE
esm-infra/focal	DNE
focal	DNE
jammy	released	1.17.13-3ubuntu1.3
lunar	DNE
mantic	DNE
noble	DNE
oracular	DNE
plucky	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support
devel	DNE
esm-apps/bionic	released	1.18.1-1ubuntu1~18.04.4+esm1
esm-apps/focal	released	1.18.1-1ubuntu1~20.04.3
esm-apps/xenial	released	1.18.1-1ubuntu1~16.04.6+esm1
focal	released	1.18.1-1ubuntu1~20.04.3
jammy	released	1.18.1-1ubuntu1.2
lunar	DNE
mantic	DNE
noble	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
devel	DNE
esm-infra/focal	DNE
focal	DNE
jammy	DNE
lunar	not-affected	1.19.8-1
mantic	DNE
noble	DNE
oracular	DNE
plucky	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
devel	DNE
esm-apps/focal	not-affected	1.20.1-1
esm-apps/jammy	not-affected	1.20.1-1
focal	not-affected	1.20.1-1
jammy	not-affected	1.20.1-1
lunar	not-affected	1.20.1-1
mantic	not-affected	1.20.1-1
noble	DNE
oracular	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
devel	DNE
esm-apps/focal	not-affected	1.20.1-1
esm-apps/jammy	not-affected	1.20.1-1
esm-apps/noble	not-affected	1.20.1-1
focal	not-affected	1.20.1-1
jammy	not-affected	1.20.1-1
lunar	not-affected	1.20.1-1
mantic	not-affected	1.20.1-1
noble	not-affected	1.20.1-1

Показывать по

Релиз	Статус	Примечание
bionic	DNE
devel	DNE
esm-infra/focal	DNE
esm-infra/xenial	needed
focal	DNE
jammy	DNE
lunar	DNE
mantic	DNE
noble	DNE
oracular	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support
devel	DNE
esm-apps/bionic	needed
esm-infra/focal	DNE
focal	DNE
jammy	DNE
lunar	DNE
mantic	DNE
noble	DNE
oracular	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support
devel	DNE
esm-apps/bionic	needed
esm-infra/focal	DNE
focal	DNE
jammy	DNE
lunar	DNE
mantic	DNE
noble	DNE
oracular	DNE

Показывать по

Релиз	Статус	Примечание
bionic	DNE
devel	not-affected	1:0.7.0+dfsg-1
esm-apps/jammy	needed
esm-apps/noble	not-affected	1:0.7.0+dfsg-1
esm-infra/focal	DNE
focal	DNE
jammy	needed
kinetic	ignored	end of life, was needs-triage
lunar	not-affected	1:0.7.0+dfsg-1
mantic	not-affected	1:0.7.0+dfsg-1

Показывать по

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was needs-triage
devel	released	20230426.00-0ubuntu2
esm-apps/bionic	needed
esm-apps/xenial	needed
esm-infra/focal	released	20231004.02-0ubuntu1~20.04.3
focal	released	20231004.02-0ubuntu1~20.04.3
jammy	released	20231004.02-0ubuntu1~22.04.3
kinetic	ignored	end of life, was needed
lunar	ignored	end of life, was needed
mantic	released	20230426.00-0ubuntu2

Показывать по

Ссылки на источники

EPSS

Процентиль: 46%

0.00235

Низкий

7.5 High

CVSS3

Связанные уязвимости

CVE-2022-41723

CVSS3: 7.5

redhat

почти 3 года назад

A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of small requests.

CVE-2022-41723

CVSS3: 7.5

nvd

почти 3 года назад

A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of small requests.

CVE-2022-41723

CVSS3: 7.5

msrc

10 месяцев назад

Описание отсутствует

CVE-2022-41723

CVSS3: 7.5

debian

почти 3 года назад

A maliciously crafted HTTP/2 stream could cause excessive CPU consumpt ...

ROS-20231030-04

CVSS3: 7.5

redos

около 2 лет назад

Уязвимость podman

EPSS

Процентиль: 46%

0.00235

Низкий

7.5 High

CVSS3

CVE-2022-41723

Описание

Пакет containerd

Пакет golang

Пакет golang-1.10

Пакет golang-1.13

Пакет golang-1.14

Пакет golang-1.16

Пакет golang-1.17

Пакет golang-1.18

Пакет golang-1.19

Пакет golang-1.20

Пакет golang-1.21

Пакет golang-1.6

Пакет golang-1.8

Пакет golang-1.9

Пакет golang-golang-x-net

Пакет google-guest-agent

Ссылки на источники

Связанные уязвимости