CVE-2023-44487

Source
https://nvd.nist.gov/vuln/detail/CVE-2023-44487
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-44487.json
Aliases
Related
Published
2023-10-10T14:15:00Z
Modified
2023-12-06T01:03:14.681524Z
Details

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

References

Affected packages

Alpine:v3.17 / nghttp2

Package

Name
nghttp2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0The exact introduced commit is unknown
Fixed
1.51.0-r2

Affected versions

1.*

1.2.0-r0
1.3.0-r0
1.3.2-r0
1.3.4-r0
1.5.0-r0
1.6.0-r0
1.7.0-r0
1.7.1-r0
1.8.0-r0
1.9.1-r0
1.9.2-r0
1.10.0-r0
1.11.0-r0
1.11.1-r0
1.12.0-r0
1.13.0-r0
1.14.0-r0
1.14.1-r0
1.15.0-r0
1.15.0-r1
1.16.0-r0
1.16.1-r0
1.17.0-r0
1.18.0-r0
1.18.0-r1
1.18.1-r0
1.20.0-r0
1.21.0-r0
1.21.1-r0
1.21.1-r1
1.22.0-r0
1.23.1-r0
1.24.0-r0
1.25.0-r0
1.26.0-r0
1.27.0-r0
1.27.0-r1
1.28.0-r0
1.29.0-r0
1.30.0-r0
1.31.0-r0
1.31.0-r1
1.31.1-r0
1.32.0-r0
1.33.0-r0
1.33.0-r1
1.34.0-r0
1.35.1-r0
1.36.0-r0
1.37.0-r0
1.37.0-r1
1.38.0-r0
1.39.1-r0
1.39.2-r0
1.39.2-r1
1.39.2-r2
1.40.0-r0
1.41.0-r0
1.42.0-r0
1.42.0-r1
1.43.0-r0
1.44.0-r0
1.44.0-r1
1.44.0-r2
1.46.0-r0
1.47.0-r0
1.48.0-r0
1.48.0-r1
1.49.0-r1
1.50.0-r1
1.51.0-r1

Alpine:v3.18 / nghttp2

Package

Name
nghttp2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0The exact introduced commit is unknown
Fixed
1.57.0-r0

Affected versions

1.*

1.2.0-r0
1.3.0-r0
1.3.2-r0
1.3.4-r0
1.5.0-r0
1.6.0-r0
1.7.0-r0
1.7.1-r0
1.8.0-r0
1.9.1-r0
1.9.2-r0
1.10.0-r0
1.11.0-r0
1.11.1-r0
1.12.0-r0
1.13.0-r0
1.14.0-r0
1.14.1-r0
1.15.0-r0
1.15.0-r1
1.16.0-r0
1.16.1-r0
1.17.0-r0
1.18.0-r0
1.18.0-r1
1.18.1-r0
1.20.0-r0
1.21.0-r0
1.21.1-r0
1.21.1-r1
1.22.0-r0
1.23.1-r0
1.24.0-r0
1.25.0-r0
1.26.0-r0
1.27.0-r0
1.27.0-r1
1.28.0-r0
1.29.0-r0
1.30.0-r0
1.31.0-r0
1.31.0-r1
1.31.1-r0
1.32.0-r0
1.33.0-r0
1.33.0-r1
1.34.0-r0
1.35.1-r0
1.36.0-r0
1.37.0-r0
1.37.0-r1
1.38.0-r0
1.39.1-r0
1.39.2-r0
1.39.2-r1
1.39.2-r2
1.40.0-r0
1.41.0-r0
1.42.0-r0
1.42.0-r1
1.43.0-r0
1.44.0-r0
1.44.0-r1
1.44.0-r2
1.46.0-r0
1.47.0-r0
1.48.0-r0
1.48.0-r1
1.49.0-r0
1.50.0-r0
1.51.0-r0
1.52.0-r0
1.52.0-r1
1.53.0-r1
1.55.1-r1