nginx: fix CVE-2023-44487 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Meenali Gupta <meenali.gupta@windriver.com>	2024-04-29 06:23:51 +0000
committer	Armin Kuster <akuster808@gmail.com>	2024-05-26 15:21:47 -0400
commit	85102dd2dff41945997b983f7c2bfc954dd3bc47 (patch)
tree	535bbe8b0bff3ff5d86fef13ba095e70e46fc682 /meta-python/recipes-devtools/python/python3-ptyprocess
parent	70b217ecc812296d98e1aa027a7d182a8019dded (diff)
download	meta-openembedded-85102dd2dff41945997b983f7c2bfc954dd3bc47.tar.gz

nginx: fix CVE-2023-44487

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. References: https://nvd.nist.gov/vuln/detail/CVE-2023-44487 Signed-off-by: Meenali Gupta <meenali.gupta@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>

Diffstat (limited to 'meta-python/recipes-devtools/python/python3-ptyprocess')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: