Количество 118
Количество 118
CVE-2023-44487
The HTTP/2 protocol allows a denial of service (server resource consum ...
SUSE-SU-2023:3888-1
Security update for Golang Prometheus
SUSE-SU-2023:3886-1
Security update for grafana
SUSE-SU-2023:3263-1
Security update for go1.19
SUSE-SU-2023:3181-1
Security update for go1.20
GHSA-xc82-5m89-g4jv
Extremely large RSA keys in certificate chains can cause a client/server to expend significant CPU time verifying signatures. With fix, the size of RSA keys transmitted during handshakes is restricted to <= 8192 bits. Based on a survey of publicly trusted RSA keys, there are currently only three certificates in circulation with keys larger than this, and all three appear to be test certificates that are not actively deployed. It is possible there are larger keys in use in private PKIs, but we target the web PKI, so causing breakage here in the interests of increasing the default safety of users of crypto/tls seems reasonable.
BDU:2023-06242
Уязвимость пакета crypto/tls языка программирования Go, позволяющая нарушителю вызвать отказ в обслуживании
SUSE-SU-2023:3841-1
Security update for go1.19-openssl
SUSE-SU-2023:4624-1
Security update for kubevirt, virt-api-container, virt-controller-container, virt-exportproxy-container, virt-exportserver-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container, virt-pr-helper-container
SUSE-SU-2023:4492-1
Security update for nghttp2
SUSE-SU-2023:4295-1
Security update for nodejs10
SUSE-SU-2023:4200-1
Security update for nghttp2
SUSE-SU-2023:4199-1
Security update for nghttp2
SUSE-SU-2023:4163-1
Security update for netty, netty-tcnative
RLSA-2023:5928
Important: tomcat security update
RLSA-2023:5924
Important: varnish security update
RLSA-2023:5838
Important: nghttp2 security update
RLSA-2023:5765
Important: nodejs security update
RLSA-2023:5749
Important: .NET 7.0 security update
RLSA-2023:5708
Important: dotnet6.0 security update
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| CVE-2023-44487 The HTTP/2 protocol allows a denial of service (server resource consum ... | CVSS3: 7.5 | 94% Критический | около 2 лет назад |
 | SUSE-SU-2023:3888-1 Security update for Golang Prometheus | 0% Низкий | около 2 лет назад | |
| SUSE-SU-2023:3886-1 Security update for grafana | 0% Низкий | около 2 лет назад | |
| SUSE-SU-2023:3263-1 Security update for go1.19 | 0% Низкий | около 2 лет назад | |
| SUSE-SU-2023:3181-1 Security update for go1.20 | 0% Низкий | около 2 лет назад | |
| GHSA-xc82-5m89-g4jv Extremely large RSA keys in certificate chains can cause a client/server to expend significant CPU time verifying signatures. With fix, the size of RSA keys transmitted during handshakes is restricted to <= 8192 bits. Based on a survey of publicly trusted RSA keys, there are currently only three certificates in circulation with keys larger than this, and all three appear to be test certificates that are not actively deployed. It is possible there are larger keys in use in private PKIs, but we target the web PKI, so causing breakage here in the interests of increasing the default safety of users of crypto/tls seems reasonable. | CVSS3: 5.3 | 0% Низкий | около 2 лет назад |
 | BDU:2023-06242 Уязвимость пакета crypto/tls языка программирования Go, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 5.3 | 0% Низкий | около 2 лет назад |
| SUSE-SU-2023:3841-1 Security update for go1.19-openssl | около 2 лет назад | ||
| SUSE-SU-2023:4624-1 Security update for kubevirt, virt-api-container, virt-controller-container, virt-exportproxy-container, virt-exportserver-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container, virt-pr-helper-container | 94% Критический | почти 2 года назад | |
| SUSE-SU-2023:4492-1 Security update for nghttp2 | 94% Критический | почти 2 года назад | |
| SUSE-SU-2023:4295-1 Security update for nodejs10 | 94% Критический | почти 2 года назад | |
| SUSE-SU-2023:4200-1 Security update for nghttp2 | 94% Критический | почти 2 года назад | |
| SUSE-SU-2023:4199-1 Security update for nghttp2 | 94% Критический | почти 2 года назад | |
| SUSE-SU-2023:4163-1 Security update for netty, netty-tcnative | 94% Критический | почти 2 года назад | |
 | RLSA-2023:5928 Important: tomcat security update | 94% Критический | почти 2 года назад | |
| RLSA-2023:5924 Important: varnish security update | 94% Критический | почти 2 года назад | |
| RLSA-2023:5838 Important: nghttp2 security update | 94% Критический | почти 2 года назад | |
| RLSA-2023:5765 Important: nodejs security update | 94% Критический | почти 2 года назад | |
| RLSA-2023:5749 Important: .NET 7.0 security update | 94% Критический | почти 2 года назад | |
| RLSA-2023:5708 Important: dotnet6.0 security update | 94% Критический | почти 2 года назад |
Уязвимостей на страницу