Release date:
2023-10-30 18:13:27 UTC
Description:
* SECURITY UPDATE: The HTTP/2 protocol allows a denial of service
(server resource consumption) because request cancellation can
reset many streams quickly
- debian/patches/CVE-2023-44487.patch: h2: don't accept new streams
if conn_streams are still in excess
- CVE-2023-44487
Updated packages:
-
haproxy_1.8.8-1ubuntu0.13.tuxcare.els1_amd64.deb
sha:931d6c169e8a245cf92467d8359bafa10e4705b8
-
haproxy-doc_1.8.8-1ubuntu0.13.tuxcare.els1_all.deb
sha:7707964813cbd7e490775f12a5a3692d3f532035
-
vim-haproxy_1.8.8-1ubuntu0.13.tuxcare.els1_all.deb
sha:c347ff0a961838dadb4569f078ddf776ccc629d7
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
