ELSA-2019-4269: container-tools:ol8 security and bug fix update (IMPORTANT)

Important: container-tools:rhel8 security and bug fix update

Important: container-tools:1.0 security update

ELSA-2019-4273: container-tools:1.0 security update (IMPORTANT)

ELSA-2019-2726: go-toolset:rhel8 security and bug fix update (IMPORTANT)

Уязвимость реализации сетевого протокола HTTP/2 операционных систем Windows, веб-сервера Apache Traffic Server, веб-сервера H2O, сетевых программных средств netty, SwiftNIO, Envoy, программной платформы Node.js позволяющая нарушителю вызвать отказ в обслуживании

Уязвимость реализации сетевого протокола HTTP/2 операционных систем Windows, веб-сервера Apache Traffic Server, веб-сервера H2O, сетевых программных средств netty, SwiftNIO, Envoy, программной платформы Node.js позволяющая нарушителю вызвать отказ в обслуживании

Security update for go1.12

Security update for go1.12

Security update for go1.11

Security update for go1.12

Security update for go1.12

Security update for nodejs8

Security update for nodejs10

Security update for nodejs8

Security update for nodejs10

Security update for nodejs10

ELSA-2019-2925: nodejs:10 security update (IMPORTANT)

Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service. The attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.

Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service. The attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.