CVE-2023-44487
- ULN >
- Oracle Linux CVE repository >
- CVE-2023-44487
CVE Details
| Release Date: | 2023-10-10 |
Description
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
See more information about CVE-2023-44487 from MITRE CVE dictionary and NIST NVD
CVSS v3.0 metrics
NOTE: The following CVSS v3.0 metrics and score provided are preliminary and subject to review.
| Base Score: | 7.5 | Base Metrics: | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
| Access Vector: | Network | Attack Complexity: | Low |
| Privileges Required: | None | User Interaction: | None |
| Scope: | Unchanged | Confidentiality Impact: | None |
| Integrity Impact: | None | Availability Impact: | High |
Errata information
| Platform | Errata | Release Date |
| Oracle Linux version 7 (conmon) | ELSA-2023-13029 | 2023-12-07 |
| Oracle Linux version 7 (cri-o) | ELSA-2023-13029 | 2023-12-07 |
| Oracle Linux version 7 (cri-tools) | ELSA-2023-13029 | 2023-12-07 |
| Oracle Linux version 7 (flannel-cni-plugin) | ELSA-2023-13029 | 2023-12-07 |
| Oracle Linux version 7 (helm) | ELSA-2023-13029 | 2023-12-07 |
| Oracle Linux version 7 (istio) | ELSA-2023-13029 | 2023-12-07 |
| Oracle Linux version 7 (kata) | ELSA-2023-13029 | 2023-12-07 |
| Oracle Linux version 7 (kata-agent) | ELSA-2023-13029 | 2023-12-07 |
| Oracle Linux version 7 (kata-image) | ELSA-2023-13029 | 2023-12-07 |
| Oracle Linux version 7 (kata-ksm-throttler) | ELSA-2023-13029 | 2023-12-07 |
| Oracle Linux version 7 (kata-proxy) | ELSA-2023-13029 | 2023-12-07 |
| Oracle Linux version 7 (kata-runtime) | ELSA-2023-13029 | 2023-12-07 |
| Oracle Linux version 7 (kata-shim) | ELSA-2023-13029 | 2023-12-07 |
| Oracle Linux version 7 (kubernetes) | ELSA-2023-13029 | 2023-12-07 |
| Oracle Linux version 7 (kubernetes-cni) | ELSA-2023-13029 | 2023-12-07 |
| Oracle Linux version 7 (kubernetes-cni-plugins) | ELSA-2023-13029 | 2023-12-07 |
| Oracle Linux version 7 (olcne) | ELSA-2023-13029 | 2023-12-07 |
| Oracle Linux version 7 (yq) | ELSA-2023-13029 | 2023-12-07 |
| Oracle Linux version 8 (conmon) | ELSA-2023-13028 | 2023-12-07 |
| Oracle Linux version 8 (conmon) | ELSA-2023-13054 | 2023-12-19 |
| Oracle Linux version 8 (cri-o) | ELSA-2023-13028 | 2023-12-07 |
| Oracle Linux version 8 (cri-o) | ELSA-2023-13054 | 2023-12-19 |
| Oracle Linux version 8 (cri-tools) | ELSA-2023-13028 | 2023-12-07 |
| Oracle Linux version 8 (cri-tools) | ELSA-2023-13054 | 2023-12-19 |
| Oracle Linux version 8 (delve) | ELSA-2023-5721 | 2023-10-18 |
| Oracle Linux version 8 (dotnet6.0) | ELSA-2023-5710 | 2023-10-18 |
| Oracle Linux version 8 (dotnet7.0) | ELSA-2023-5709 | 2023-10-19 |
| Oracle Linux version 8 (etcd) | ELSA-2023-13028 | 2023-12-07 |
| Oracle Linux version 8 (etcd) | ELSA-2023-13054 | 2023-12-19 |
| Oracle Linux version 8 (flannel-cni-plugin) | ELSA-2023-13028 | 2023-12-07 |
| Oracle Linux version 8 (flannel-cni-plugin) | ELSA-2023-13054 | 2023-12-19 |
| Oracle Linux version 8 (go-toolset) | ELSA-2023-5721 | 2023-10-18 |
| Oracle Linux version 8 (golang) | ELSA-2023-5721 | 2023-10-18 |
| Oracle Linux version 8 (grafana) | ELSA-2023-5863 | 2023-10-20 |
| Oracle Linux version 8 (helm) | ELSA-2023-13028 | 2023-12-07 |
| Oracle Linux version 8 (helm) | ELSA-2023-13054 | 2023-12-19 |
| Oracle Linux version 8 (istio) | ELSA-2023-13028 | 2023-12-07 |
| Oracle Linux version 8 (istio) | ELSA-2023-13054 | 2023-12-19 |
| Oracle Linux version 8 (kata) | ELSA-2023-13028 | 2023-12-07 |
| Oracle Linux version 8 (kata) | ELSA-2023-13054 | 2023-12-19 |
| Oracle Linux version 8 (kata-agent) | ELSA-2023-13028 | 2023-12-07 |
| Oracle Linux version 8 (kata-agent) | ELSA-2023-13054 | 2023-12-19 |
| Oracle Linux version 8 (kata-image) | ELSA-2023-13028 | 2023-12-07 |
| Oracle Linux version 8 (kata-image) | ELSA-2023-13054 | 2023-12-19 |
| Oracle Linux version 8 (kata-ksm-throttler) | ELSA-2023-13028 | 2023-12-07 |
| Oracle Linux version 8 (kata-ksm-throttler) | ELSA-2023-13054 | 2023-12-19 |
| Oracle Linux version 8 (kata-proxy) | ELSA-2023-13028 | 2023-12-07 |
| Oracle Linux version 8 (kata-proxy) | ELSA-2023-13054 | 2023-12-19 |
| Oracle Linux version 8 (kata-runtime) | ELSA-2023-13028 | 2023-12-07 |
| Oracle Linux version 8 (kata-runtime) | ELSA-2023-13054 | 2023-12-19 |
| Oracle Linux version 8 (kata-shim) | ELSA-2023-13028 | 2023-12-07 |
| Oracle Linux version 8 (kata-shim) | ELSA-2023-13054 | 2023-12-19 |
| Oracle Linux version 8 (kubernetes) | ELSA-2023-13028 | 2023-12-07 |
| Oracle Linux version 8 (kubernetes) | ELSA-2023-13054 | 2023-12-19 |
| Oracle Linux version 8 (kubernetes-cni) | ELSA-2023-13028 | 2023-12-07 |
| Oracle Linux version 8 (kubernetes-cni) | ELSA-2023-13054 | 2023-12-19 |
| Oracle Linux version 8 (kubernetes-cni-plugins) | ELSA-2023-13028 | 2023-12-07 |
| Oracle Linux version 8 (kubernetes-cni-plugins) | ELSA-2023-13054 | 2023-12-19 |
| Oracle Linux version 8 (kubevirt) | ELSA-2023-13054 | 2023-12-19 |
| Oracle Linux version 8 (nghttp2) | ELSA-2023-5837 | 2023-10-19 |
| Oracle Linux version 8 (nginx) | ELSA-2023-5712 | 2023-10-17 |
| Oracle Linux version 8 (nginx) | ELSA-2023-5713 | 2023-10-17 |
| Oracle Linux version 8 (nodejs) | ELSA-2023-5850 | 2023-10-20 |
| Oracle Linux version 8 (nodejs) | ELSA-2023-5869 | 2023-10-23 |
| Oracle Linux version 8 (nodejs) | ELSA-2023-7205 | 2023-11-22 |
| Oracle Linux version 8 (nodejs) | ELSA-2024-1444 | 2024-03-21 |
| Oracle Linux version 8 (nodejs-nodemon) | ELSA-2023-5850 | 2023-10-20 |
| Oracle Linux version 8 (nodejs-nodemon) | ELSA-2023-5869 | 2023-10-23 |
| Oracle Linux version 8 (nodejs-nodemon) | ELSA-2023-7205 | 2023-11-22 |
| Oracle Linux version 8 (nodejs-nodemon) | ELSA-2024-1444 | 2024-03-21 |
| Oracle Linux version 8 (nodejs-packaging) | ELSA-2023-5850 | 2023-10-20 |
| Oracle Linux version 8 (nodejs-packaging) | ELSA-2023-5869 | 2023-10-23 |
| Oracle Linux version 8 (nodejs-packaging) | ELSA-2023-7205 | 2023-11-22 |
| Oracle Linux version 8 (nodejs-packaging) | ELSA-2024-1444 | 2024-03-21 |
| Oracle Linux version 8 (olcne) | ELSA-2023-13028 | 2023-12-07 |
| Oracle Linux version 8 (olcne) | ELSA-2023-13054 | 2023-12-19 |
| Oracle Linux version 8 (tomcat) | ELSA-2023-5928 | 2023-10-24 |
| Oracle Linux version 8 (varnish) | ELSA-2023-5989 | 2023-10-24 |
| Oracle Linux version 8 (varnish-modules) | ELSA-2023-5989 | 2023-10-24 |
| Oracle Linux version 8 (yq) | ELSA-2023-13028 | 2023-12-07 |
| Oracle Linux version 8 (yq) | ELSA-2023-13054 | 2023-12-19 |
| Oracle Linux version 9 (conmon) | ELSA-2023-13053 | 2023-12-19 |
| Oracle Linux version 9 (cri-o) | ELSA-2023-13053 | 2023-12-19 |
| Oracle Linux version 9 (cri-tools) | ELSA-2023-13053 | 2023-12-19 |
| Oracle Linux version 9 (dotnet6.0) | ELSA-2023-5708 | 2023-10-18 |
| Oracle Linux version 9 (dotnet7.0) | ELSA-2023-5749 | 2023-10-18 |
| Oracle Linux version 9 (etcd) | ELSA-2023-13053 | 2023-12-19 |
| Oracle Linux version 9 (flannel-cni-plugin) | ELSA-2023-13053 | 2023-12-19 |
| Oracle Linux version 9 (go-toolset) | ELSA-2023-5738 | 2023-10-18 |
| Oracle Linux version 9 (golang) | ELSA-2023-5738 | 2023-10-18 |
| Oracle Linux version 9 (grafana) | ELSA-2023-5867 | 2023-10-20 |
| Oracle Linux version 9 (helm) | ELSA-2023-13053 | 2023-12-19 |
| Oracle Linux version 9 (istio) | ELSA-2023-13053 | 2023-12-19 |
| Oracle Linux version 9 (kata) | ELSA-2023-13053 | 2023-12-19 |
| Oracle Linux version 9 (kata-agent) | ELSA-2023-13053 | 2023-12-19 |
| Oracle Linux version 9 (kata-image) | ELSA-2023-13053 | 2023-12-19 |
| Oracle Linux version 9 (kata-ksm-throttler) | ELSA-2023-13053 | 2023-12-19 |
| Oracle Linux version 9 (kata-proxy) | ELSA-2023-13053 | 2023-12-19 |
| Oracle Linux version 9 (kata-runtime) | ELSA-2023-13053 | 2023-12-19 |
| Oracle Linux version 9 (kata-shim) | ELSA-2023-13053 | 2023-12-19 |
| Oracle Linux version 9 (kubernetes) | ELSA-2023-13053 | 2023-12-19 |
| Oracle Linux version 9 (kubernetes-cni) | ELSA-2023-13053 | 2023-12-19 |
| Oracle Linux version 9 (kubernetes-cni-plugins) | ELSA-2023-13053 | 2023-12-19 |
| Oracle Linux version 9 (kubevirt) | ELSA-2023-13053 | 2023-12-19 |
| Oracle Linux version 9 (nghttp2) | ELSA-2023-5838 | 2023-10-19 |
| Oracle Linux version 9 (nghttp2) | ELSA-2023-6746 | 2023-11-16 |
| Oracle Linux version 9 (nginx) | ELSA-2023-5711 | 2023-10-17 |
| Oracle Linux version 9 (nginx) | ELSA-2023-6120 | 2023-10-26 |
| Oracle Linux version 9 (nodejs) | ELSA-2023-5765 | 2023-10-20 |
| Oracle Linux version 9 (nodejs) | ELSA-2023-5849 | 2023-10-20 |
| Oracle Linux version 9 (nodejs-nodemon) | ELSA-2023-5849 | 2023-10-20 |
| Oracle Linux version 9 (nodejs-packaging) | ELSA-2023-5849 | 2023-10-20 |
| Oracle Linux version 9 (olcne) | ELSA-2023-13053 | 2023-12-19 |
| Oracle Linux version 9 (tomcat) | ELSA-2023-5929 | 2023-10-23 |
| Oracle Linux version 9 (varnish) | ELSA-2023-5924 | 2023-10-24 |
| Oracle Linux version 9 (yq) | ELSA-2023-13053 | 2023-12-19 |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
