CLSA-2023-1698689602

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2023-1698689602.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2023-1698689602
Upstream
Published
2023-10-30T18:13:27Z
Modified
2026-06-04T09:47:20.342470121Z
Summary
Fix CVE(s): CVE-2023-44487
Details
  • SECURITY UPDATE: The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly
    • debian/patches/CVE-2023-44487.patch: h2: don't accept new streams if conn_streams are still in excess
    • CVE-2023-44487
References

Affected packages

TuxCare:Ubuntu:18.04 / haproxy

Package

Name
haproxy
Purl
pkg:deb/tuxcare/haproxy?distro=ubuntu-18.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.8.8-1ubuntu0.13.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2023-1698689602.json"

TuxCare:Ubuntu:18.04 / haproxy-doc

Package

Name
haproxy-doc
Purl
pkg:deb/tuxcare/haproxy-doc?distro=ubuntu-18.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.8.8-1ubuntu0.13.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2023-1698689602.json"

TuxCare:Ubuntu:18.04 / vim-haproxy

Package

Name
vim-haproxy
Purl
pkg:deb/tuxcare/vim-haproxy?distro=ubuntu-18.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.8.8-1ubuntu0.13.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu18.04els/CLSA-2023-1698689602.json"