Описание
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 1.9.8-1 |
| esm-apps/bionic | not-affected | dns over https not implemented |
| esm-apps/focal | not-affected | 1.4.0-1ubuntu0.1~esm1 |
| esm-apps/jammy | not-affected | 1.6.1-1ubuntu0.1~esm1 |
| esm-apps/noble | not-affected | 1.8.3-2build2 |
| esm-apps/xenial | not-affected | dns over https not implemented |
| jammy | needed | |
| noble | not-affected | 1.8.3-2build2 |
| plucky | not-affected | 1.9.8-1 |
| questing | not-affected | 1.9.8-1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| devel | DNE | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | released | 6.0.123-0ubuntu1~22.04.1 |
| lunar | released | 6.0.123-0ubuntu1~23.04.1 |
| mantic | released | 6.0.123-0ubuntu1 |
| noble | DNE | |
| oracular | DNE | |
| plucky | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| devel | DNE | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | released | 7.0.112-0ubuntu1~22.04.1 |
| lunar | released | 7.0.112-0ubuntu1~23.04.1 |
| mantic | released | 7.0.112-0ubuntu1 |
| noble | DNE | |
| oracular | DNE | |
| plucky | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | DNE | |
| devel | DNE | |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | not-affected | 8.0.102-8.0.2-0ubuntu1~22.04.1 |
| lunar | DNE | |
| mantic | released | 8.0.100-8.0.0~rc2-0ubuntu1 |
| noble | released | 8.0.100-8.0.0-0ubuntu1 |
| oracular | released | 8.0.100-8.0.0-0ubuntu1 |
| plucky | released | 8.0.100-8.0.0-0ubuntu1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | DNE | |
| esm-apps/bionic | released | 2.2.4+dfsg-1ubuntu0.1~esm2 |
| esm-apps/focal | released | 2.2.5+dfsg2-3ubuntu0.1~esm1 |
| esm-apps/jammy | released | 2.2.5+dfsg2-6.1ubuntu2+esm1 |
| esm-apps/noble | not-affected | 2.2.5+dfsg2-8.1ubuntu3 |
| focal | ignored | end of standard support |
| jammy | needed | |
| lunar | ignored | end of life, was needs-triage |
| mantic | ignored | end of life, was needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | not-affected | 2.6.15-1ubuntu2 |
| esm-infra/bionic | released | 1.8.8-1ubuntu0.13+esm3 |
| esm-infra/focal | not-affected | 2.0.31-0ubuntu0.2 |
| esm-infra/xenial | not-affected | |
| focal | not-affected | 2.0.31-0ubuntu0.2 |
| jammy | not-affected | 2.4.22-0ubuntu0.22.04.2 |
| lunar | not-affected | 2.6.9-1ubuntu1.1 |
| mantic | not-affected | 2.6.15-1ubuntu2 |
| noble | not-affected | 2.6.15-1ubuntu2 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | not-affected | 1:4.1.48-8 |
| esm-apps/bionic | not-affected | code not present |
| esm-apps/focal | released | 1:4.1.45-1ubuntu0.2 |
| esm-apps/jammy | released | 1:4.1.48-4+deb11u2build0.22.04.1 |
| esm-apps/noble | not-affected | 1:4.1.48-8 |
| esm-apps/xenial | not-affected | code not present |
| esm-infra-legacy/trusty | not-affected | code not present |
| focal | released | 1:4.1.45-1ubuntu0.2 |
| jammy | released | 1:4.1.48-4+deb11u2build0.22.04.1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | not-affected | 1.58.0-1 |
| esm-apps/xenial | released | 1.7.1-1ubuntu0.1~esm2 |
| esm-infra/bionic | released | 1.30.0-1ubuntu1+esm2 |
| esm-infra/focal | released | 1.40.0-1ubuntu0.2 |
| focal | released | 1.40.0-1ubuntu0.2 |
| jammy | released | 1.43.0-1ubuntu0.1 |
| lunar | released | 1.52.0-1ubuntu0.1 |
| mantic | released | 1.55.1-1ubuntu0.1 |
| noble | not-affected | 1.58.0-1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | not-affected | |
| esm-infra-legacy/trusty | not-affected | |
| esm-infra/bionic | not-affected | |
| esm-infra/focal | not-affected | |
| esm-infra/xenial | not-affected | |
| focal | not-affected | |
| jammy | not-affected | |
| lunar | not-affected | |
| mantic | not-affected |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | not-affected | 20.18.1+dfsg-1ubuntu2 |
| esm-apps/bionic | released | 8.10.0~dfsg-2ubuntu0.4+esm6 |
| esm-apps/focal | released | 10.19.0~dfsg-3ubuntu1.6+esm2 |
| esm-apps/jammy | released | 12.22.9~dfsg-1ubuntu3.6+esm2 |
| esm-apps/noble | not-affected | 18.19.1+dfsg-6ubuntu5 |
| esm-apps/xenial | not-affected | vulnerable code not present |
| esm-infra-legacy/trusty | not-affected | vulnerable code not present |
| focal | ignored | end of standard support, was needed |
| jammy | needed |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | not-affected | 10.1.23-1 |
| esm-apps/noble | not-affected | 10.1.23-1 |
| esm-infra/focal | DNE | |
| focal | DNE | |
| jammy | DNE | |
| lunar | ignored | end of life, was needs-triage |
| mantic | ignored | end of life, was needs-triage |
| noble | not-affected | 10.1.23-1 |
| oracular | not-affected | 10.1.23-1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | DNE | |
| esm-apps/bionic | released | 8.5.39-1ubuntu1~18.04.3+esm4 |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/focal | DNE | |
| esm-infra/xenial | not-affected | vulnerable code not present |
| focal | DNE | |
| jammy | DNE | |
| lunar | DNE | |
| mantic | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | not-affected | 9.0.70-2ubuntu1.1 |
| esm-apps/bionic | released | 9.0.16-3ubuntu0.18.04.2+esm5 |
| esm-apps/focal | released | 9.0.31-1ubuntu0.9 |
| esm-apps/jammy | released | 9.0.58-1ubuntu0.2 |
| esm-apps/noble | not-affected | 9.0.70-2ubuntu1.1 |
| focal | released | 9.0.31-1ubuntu0.9 |
| jammy | released | 9.0.58-1ubuntu0.2 |
| lunar | ignored | end of life, was needs-triage |
| mantic | ignored | end of life, was needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support |
| devel | DNE | |
| esm-apps/bionic | not-affected | vulnerable code not present |
| esm-apps/focal | released | 8.0.5+ds-3ubuntu0.1~esm1 |
| esm-apps/jammy | released | 9.1.1+ds-2ubuntu0.1~esm1 |
| esm-apps/noble | not-affected | 9.2.3+ds-1+deb12u1build4 |
| esm-apps/xenial | not-affected | vulnerable code not present |
| focal | ignored | end of standard support, was needed |
| jammy | needed | |
| lunar | ignored | end of life, was needs-triage |
Показывать по
Ссылки на источники
7.5 High
CVSS3
Связанные уязвимости
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
The HTTP/2 protocol allows a denial of service (server resource consum ...
Security update for kubevirt, virt-api-container, virt-controller-container, virt-exportproxy-container, virt-exportserver-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container, virt-pr-helper-container
7.5 High
CVSS3