CVE-2023-44487

CVE Details

Release Date:2023-10-10

Description


The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

See more information about CVE-2023-44487 from MITRE CVE dictionary and NIST NVD


CVSS v3.0 metrics


NOTE: The following CVSS v3.0 metrics and score provided are preliminary and subject to review.

Base Score: 7.5 Base Metrics: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Vector: Network Attack Complexity: Low
Privileges Required: None User Interaction: None
Scope: Unchanged Confidentiality Impact: None
Integrity Impact: None Availability Impact: High

Errata information


PlatformErrataRelease Date
Oracle Linux version 7 (conmon)ELSA-2023-130292023-12-07
Oracle Linux version 7 (cri-o)ELSA-2023-130292023-12-07
Oracle Linux version 7 (cri-tools)ELSA-2023-130292023-12-07
Oracle Linux version 7 (flannel-cni-plugin)ELSA-2023-130292023-12-07
Oracle Linux version 7 (helm)ELSA-2023-130292023-12-07
Oracle Linux version 7 (istio)ELSA-2023-130292023-12-07
Oracle Linux version 7 (kata)ELSA-2023-130292023-12-07
Oracle Linux version 7 (kata-agent)ELSA-2023-130292023-12-07
Oracle Linux version 7 (kata-image)ELSA-2023-130292023-12-07
Oracle Linux version 7 (kata-ksm-throttler)ELSA-2023-130292023-12-07
Oracle Linux version 7 (kata-proxy)ELSA-2023-130292023-12-07
Oracle Linux version 7 (kata-runtime)ELSA-2023-130292023-12-07
Oracle Linux version 7 (kata-shim)ELSA-2023-130292023-12-07
Oracle Linux version 7 (kubernetes)ELSA-2023-130292023-12-07
Oracle Linux version 7 (kubernetes-cni)ELSA-2023-130292023-12-07
Oracle Linux version 7 (kubernetes-cni-plugins)ELSA-2023-130292023-12-07
Oracle Linux version 7 (olcne)ELSA-2023-130292023-12-07
Oracle Linux version 7 (yq)ELSA-2023-130292023-12-07
Oracle Linux version 8 (conmon)ELSA-2023-130282023-12-07
Oracle Linux version 8 (conmon)ELSA-2023-130542023-12-19
Oracle Linux version 8 (cri-o)ELSA-2023-130282023-12-07
Oracle Linux version 8 (cri-o)ELSA-2023-130542023-12-19
Oracle Linux version 8 (cri-tools)ELSA-2023-130282023-12-07
Oracle Linux version 8 (cri-tools)ELSA-2023-130542023-12-19
Oracle Linux version 8 (delve)ELSA-2023-57212023-10-18
Oracle Linux version 8 (dotnet6.0)ELSA-2023-57102023-10-18
Oracle Linux version 8 (dotnet7.0)ELSA-2023-57092023-10-19
Oracle Linux version 8 (etcd)ELSA-2023-130282023-12-07
Oracle Linux version 8 (etcd)ELSA-2023-130542023-12-19
Oracle Linux version 8 (flannel-cni-plugin)ELSA-2023-130282023-12-07
Oracle Linux version 8 (flannel-cni-plugin)ELSA-2023-130542023-12-19
Oracle Linux version 8 (go-toolset)ELSA-2023-57212023-10-18
Oracle Linux version 8 (golang)ELSA-2023-57212023-10-18
Oracle Linux version 8 (grafana)ELSA-2023-58632023-10-20
Oracle Linux version 8 (helm)ELSA-2023-130282023-12-07
Oracle Linux version 8 (helm)ELSA-2023-130542023-12-19
Oracle Linux version 8 (istio)ELSA-2023-130282023-12-07
Oracle Linux version 8 (istio)ELSA-2023-130542023-12-19
Oracle Linux version 8 (kata)ELSA-2023-130282023-12-07
Oracle Linux version 8 (kata)ELSA-2023-130542023-12-19
Oracle Linux version 8 (kata-agent)ELSA-2023-130282023-12-07
Oracle Linux version 8 (kata-agent)ELSA-2023-130542023-12-19
Oracle Linux version 8 (kata-image)ELSA-2023-130282023-12-07
Oracle Linux version 8 (kata-image)ELSA-2023-130542023-12-19
Oracle Linux version 8 (kata-ksm-throttler)ELSA-2023-130282023-12-07
Oracle Linux version 8 (kata-ksm-throttler)ELSA-2023-130542023-12-19
Oracle Linux version 8 (kata-proxy)ELSA-2023-130282023-12-07
Oracle Linux version 8 (kata-proxy)ELSA-2023-130542023-12-19
Oracle Linux version 8 (kata-runtime)ELSA-2023-130282023-12-07
Oracle Linux version 8 (kata-runtime)ELSA-2023-130542023-12-19
Oracle Linux version 8 (kata-shim)ELSA-2023-130282023-12-07
Oracle Linux version 8 (kata-shim)ELSA-2023-130542023-12-19
Oracle Linux version 8 (kubernetes)ELSA-2023-130282023-12-07
Oracle Linux version 8 (kubernetes)ELSA-2023-130542023-12-19
Oracle Linux version 8 (kubernetes-cni)ELSA-2023-130282023-12-07
Oracle Linux version 8 (kubernetes-cni)ELSA-2023-130542023-12-19
Oracle Linux version 8 (kubernetes-cni-plugins)ELSA-2023-130282023-12-07
Oracle Linux version 8 (kubernetes-cni-plugins)ELSA-2023-130542023-12-19
Oracle Linux version 8 (kubevirt)ELSA-2023-130542023-12-19
Oracle Linux version 8 (nghttp2)ELSA-2023-58372023-10-19
Oracle Linux version 8 (nginx)ELSA-2023-57122023-10-17
Oracle Linux version 8 (nginx)ELSA-2023-57132023-10-17
Oracle Linux version 8 (nodejs)ELSA-2023-58502023-10-20
Oracle Linux version 8 (nodejs)ELSA-2023-58692023-10-23
Oracle Linux version 8 (nodejs)ELSA-2023-72052023-11-22
Oracle Linux version 8 (nodejs-nodemon)ELSA-2023-58502023-10-20
Oracle Linux version 8 (nodejs-nodemon)ELSA-2023-58692023-10-23
Oracle Linux version 8 (nodejs-nodemon)ELSA-2023-72052023-11-22
Oracle Linux version 8 (nodejs-packaging)ELSA-2023-58502023-10-20
Oracle Linux version 8 (nodejs-packaging)ELSA-2023-58692023-10-23
Oracle Linux version 8 (nodejs-packaging)ELSA-2023-72052023-11-22
Oracle Linux version 8 (olcne)ELSA-2023-130282023-12-07
Oracle Linux version 8 (olcne)ELSA-2023-130542023-12-19
Oracle Linux version 8 (tomcat)ELSA-2023-59282023-10-24
Oracle Linux version 8 (varnish)ELSA-2023-59892023-10-24
Oracle Linux version 8 (varnish-modules)ELSA-2023-59892023-10-24
Oracle Linux version 8 (yq)ELSA-2023-130282023-12-07
Oracle Linux version 8 (yq)ELSA-2023-130542023-12-19
Oracle Linux version 9 (conmon)ELSA-2023-130532023-12-19
Oracle Linux version 9 (cri-o)ELSA-2023-130532023-12-19
Oracle Linux version 9 (cri-tools)ELSA-2023-130532023-12-19
Oracle Linux version 9 (dotnet6.0)ELSA-2023-57082023-10-18
Oracle Linux version 9 (dotnet7.0)ELSA-2023-57492023-10-18
Oracle Linux version 9 (etcd)ELSA-2023-130532023-12-19
Oracle Linux version 9 (flannel-cni-plugin)ELSA-2023-130532023-12-19
Oracle Linux version 9 (go-toolset)ELSA-2023-57382023-10-18
Oracle Linux version 9 (golang)ELSA-2023-57382023-10-18
Oracle Linux version 9 (grafana)ELSA-2023-58672023-10-20
Oracle Linux version 9 (helm)ELSA-2023-130532023-12-19
Oracle Linux version 9 (istio)ELSA-2023-130532023-12-19
Oracle Linux version 9 (kata)ELSA-2023-130532023-12-19
Oracle Linux version 9 (kata-agent)ELSA-2023-130532023-12-19
Oracle Linux version 9 (kata-image)ELSA-2023-130532023-12-19
Oracle Linux version 9 (kata-ksm-throttler)ELSA-2023-130532023-12-19
Oracle Linux version 9 (kata-proxy)ELSA-2023-130532023-12-19
Oracle Linux version 9 (kata-runtime)ELSA-2023-130532023-12-19
Oracle Linux version 9 (kata-shim)ELSA-2023-130532023-12-19
Oracle Linux version 9 (kubernetes)ELSA-2023-130532023-12-19
Oracle Linux version 9 (kubernetes-cni)ELSA-2023-130532023-12-19
Oracle Linux version 9 (kubernetes-cni-plugins)ELSA-2023-130532023-12-19
Oracle Linux version 9 (kubevirt)ELSA-2023-130532023-12-19
Oracle Linux version 9 (nghttp2)ELSA-2023-58382023-10-19
Oracle Linux version 9 (nghttp2)ELSA-2023-67462023-11-16
Oracle Linux version 9 (nginx)ELSA-2023-57112023-10-17
Oracle Linux version 9 (nginx)ELSA-2023-61202023-10-26
Oracle Linux version 9 (nodejs)ELSA-2023-57652023-10-20
Oracle Linux version 9 (nodejs)ELSA-2023-58492023-10-20
Oracle Linux version 9 (nodejs-nodemon)ELSA-2023-58492023-10-20
Oracle Linux version 9 (nodejs-packaging)ELSA-2023-58492023-10-20
Oracle Linux version 9 (olcne)ELSA-2023-130532023-12-19
Oracle Linux version 9 (tomcat)ELSA-2023-59292023-10-23
Oracle Linux version 9 (varnish)ELSA-2023-59242023-10-24
Oracle Linux version 9 (yq)ELSA-2023-130532023-12-19



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete