FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-10-05 01:33:43 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
bf545001-b96d-42e4-9d2e-60fdee204a43	h2o -- HTTP/2 Rapid Reset attack vulnerability Kazuo Okuhu reports: H2O is vulnerable to the HTTP/2 Rapid Reset attack. An attacker might be able to consume more than adequate amount of processing power of h2o and the backend servers by mounting the attack. Discovery 2023-10-10 Entry 2023-10-10 h2o <= 2.2.6 h2o-devel < 2.3.0.d.20231010 CVE-2023-44487 https://github.com/h2o/h2o/security/advisories/GHSA-2m7v-gc89-fjqf

VuXML ID

Description

bf545001-b96d-42e4-9d2e-60fdee204a43

h2o -- HTTP/2 Rapid Reset attack vulnerability

Kazuo Okuhu reports:

H2O is vulnerable to the HTTP/2 Rapid Reset attack. An attacker might be able to consume more than adequate amount of processing power of h2o and the backend servers by mounting the attack.

Discovery 2023-10-10
Entry 2023-10-10
h2o

<= 2.2.6

h2o-devel

< 2.3.0.d.20231010

CVE-2023-44487
https://github.com/h2o/h2o/security/advisories/GHSA-2m7v-gc89-fjqf