The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "ubuntu_priority": "high", "binaries": [ { "binary_version": "1.7.1-1ubuntu0.1~esm2", "binary_name": "libnghttp2-14" }, { "binary_version": "1.7.1-1ubuntu0.1~esm2", "binary_name": "libnghttp2-14-dbgsym" }, { "binary_version": "1.7.1-1ubuntu0.1~esm2", "binary_name": "libnghttp2-dev" }, { "binary_version": "1.7.1-1ubuntu0.1~esm2", "binary_name": "libnghttp2-doc" }, { "binary_version": "1.7.1-1ubuntu0.1~esm2", "binary_name": "nghttp2" }, { "binary_version": "1.7.1-1ubuntu0.1~esm2", "binary_name": "nghttp2-client" }, { "binary_version": "1.7.1-1ubuntu0.1~esm2", "binary_name": "nghttp2-client-dbgsym" }, { "binary_version": "1.7.1-1ubuntu0.1~esm2", "binary_name": "nghttp2-proxy" }, { "binary_version": "1.7.1-1ubuntu0.1~esm2", "binary_name": "nghttp2-proxy-dbgsym" }, { "binary_version": "1.7.1-1ubuntu0.1~esm2", "binary_name": "nghttp2-server" }, { "binary_version": "1.7.1-1ubuntu0.1~esm2", "binary_name": "nghttp2-server-dbgsym" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "ubuntu_priority": "high", "binaries": [ { "binary_version": "1.8.8-1ubuntu0.13+esm3", "binary_name": "haproxy" }, { "binary_version": "1.8.8-1ubuntu0.13+esm3", "binary_name": "haproxy-dbgsym" }, { "binary_version": "1.8.8-1ubuntu0.13+esm3", "binary_name": "haproxy-doc" }, { "binary_version": "1.8.8-1ubuntu0.13+esm3", "binary_name": "vim-haproxy" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "ubuntu_priority": "high", "binaries": [ { "binary_version": "1.30.0-1ubuntu1+esm2", "binary_name": "libnghttp2-14" }, { "binary_version": "1.30.0-1ubuntu1+esm2", "binary_name": "libnghttp2-14-dbgsym" }, { "binary_version": "1.30.0-1ubuntu1+esm2", "binary_name": "libnghttp2-dev" }, { "binary_version": "1.30.0-1ubuntu1+esm2", "binary_name": "libnghttp2-doc" }, { "binary_version": "1.30.0-1ubuntu1+esm2", "binary_name": "nghttp2" }, { "binary_version": "1.30.0-1ubuntu1+esm2", "binary_name": "nghttp2-client" }, { "binary_version": "1.30.0-1ubuntu1+esm2", "binary_name": "nghttp2-client-dbgsym" }, { "binary_version": "1.30.0-1ubuntu1+esm2", "binary_name": "nghttp2-proxy" }, { "binary_version": "1.30.0-1ubuntu1+esm2", "binary_name": "nghttp2-proxy-dbgsym" }, { "binary_version": "1.30.0-1ubuntu1+esm2", "binary_name": "nghttp2-server" }, { "binary_version": "1.30.0-1ubuntu1+esm2", "binary_name": "nghttp2-server-dbgsym" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "ubuntu_priority": "high", "binaries": [ { "binary_version": "9.0.16-3ubuntu0.18.04.2+esm5", "binary_name": "libtomcat9-embed-java" }, { "binary_version": "9.0.16-3ubuntu0.18.04.2+esm5", "binary_name": "libtomcat9-java" }, { "binary_version": "9.0.16-3ubuntu0.18.04.2+esm5", "binary_name": "tomcat9" }, { "binary_version": "9.0.16-3ubuntu0.18.04.2+esm5", "binary_name": "tomcat9-admin" }, { "binary_version": "9.0.16-3ubuntu0.18.04.2+esm5", "binary_name": "tomcat9-common" }, { "binary_version": "9.0.16-3ubuntu0.18.04.2+esm5", "binary_name": "tomcat9-docs" }, { "binary_version": "9.0.16-3ubuntu0.18.04.2+esm5", "binary_name": "tomcat9-examples" }, { "binary_version": "9.0.16-3ubuntu0.18.04.2+esm5", "binary_name": "tomcat9-user" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "2.2.5+dfsg2-3build1", "binary_name": "h2o" }, { "binary_version": "2.2.5+dfsg2-3build1", "binary_name": "h2o-dbgsym" }, { "binary_version": "2.2.5+dfsg2-3build1", "binary_name": "h2o-doc" }, { "binary_version": "2.2.5+dfsg2-3build1", "binary_name": "libh2o-dev" }, { "binary_version": "2.2.5+dfsg2-3build1", "binary_name": "libh2o-dev-common" }, { "binary_version": "2.2.5+dfsg2-3build1", "binary_name": "libh2o-evloop-dev" }, { "binary_version": "2.2.5+dfsg2-3build1", "binary_name": "libh2o-evloop0.13" }, { "binary_version": "2.2.5+dfsg2-3build1", "binary_name": "libh2o-evloop0.13-dbgsym" }, { "binary_version": "2.2.5+dfsg2-3build1", "binary_name": "libh2o0.13" }, { "binary_version": "2.2.5+dfsg2-3build1", "binary_name": "libh2o0.13-dbgsym" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "2.0.31-0ubuntu0.2", "binary_name": "haproxy" }, { "binary_version": "2.0.31-0ubuntu0.2", "binary_name": "haproxy-dbgsym" }, { "binary_version": "2.0.31-0ubuntu0.2", "binary_name": "haproxy-doc" }, { "binary_version": "2.0.31-0ubuntu0.2", "binary_name": "vim-haproxy" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "1.40.0-1ubuntu0.2", "binary_name": "libnghttp2-14" }, { "binary_version": "1.40.0-1ubuntu0.2", "binary_name": "libnghttp2-14-dbgsym" }, { "binary_version": "1.40.0-1ubuntu0.2", "binary_name": "libnghttp2-dev" }, { "binary_version": "1.40.0-1ubuntu0.2", "binary_name": "libnghttp2-doc" }, { "binary_version": "1.40.0-1ubuntu0.2", "binary_name": "nghttp2" }, { "binary_version": "1.40.0-1ubuntu0.2", "binary_name": "nghttp2-client" }, { "binary_version": "1.40.0-1ubuntu0.2", "binary_name": "nghttp2-client-dbgsym" }, { "binary_version": "1.40.0-1ubuntu0.2", "binary_name": "nghttp2-proxy" }, { "binary_version": "1.40.0-1ubuntu0.2", "binary_name": "nghttp2-proxy-dbgsym" }, { "binary_version": "1.40.0-1ubuntu0.2", "binary_name": "nghttp2-server" }, { "binary_version": "1.40.0-1ubuntu0.2", "binary_name": "nghttp2-server-dbgsym" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "9.0.31-1ubuntu0.9", "binary_name": "libtomcat9-embed-java" }, { "binary_version": "9.0.31-1ubuntu0.9", "binary_name": "libtomcat9-java" }, { "binary_version": "9.0.31-1ubuntu0.9", "binary_name": "tomcat9" }, { "binary_version": "9.0.31-1ubuntu0.9", "binary_name": "tomcat9-admin" }, { "binary_version": "9.0.31-1ubuntu0.9", "binary_name": "tomcat9-common" }, { "binary_version": "9.0.31-1ubuntu0.9", "binary_name": "tomcat9-docs" }, { "binary_version": "9.0.31-1ubuntu0.9", "binary_name": "tomcat9-examples" }, { "binary_version": "9.0.31-1ubuntu0.9", "binary_name": "tomcat9-user" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "6.0.123-0ubuntu1~22.04.1", "binary_name": "aspnetcore-runtime-6.0" }, { "binary_version": "6.0.123-0ubuntu1~22.04.1", "binary_name": "aspnetcore-targeting-pack-6.0" }, { "binary_version": "6.0.123-0ubuntu1~22.04.1", "binary_name": "dotnet-apphost-pack-6.0" }, { "binary_version": "6.0.123-0ubuntu1~22.04.1", "binary_name": "dotnet-apphost-pack-6.0-dbgsym" }, { "binary_version": "6.0.123-0ubuntu1~22.04.1", "binary_name": "dotnet-host" }, { "binary_version": "6.0.123-0ubuntu1~22.04.1", "binary_name": "dotnet-host-dbgsym" }, { "binary_version": "6.0.123-0ubuntu1~22.04.1", "binary_name": "dotnet-hostfxr-6.0" }, { "binary_version": "6.0.123-0ubuntu1~22.04.1", "binary_name": "dotnet-hostfxr-6.0-dbgsym" }, { "binary_version": "6.0.123-0ubuntu1~22.04.1", "binary_name": "dotnet-runtime-6.0" }, { "binary_version": "6.0.123-0ubuntu1~22.04.1", "binary_name": "dotnet-runtime-6.0-dbgsym" }, { "binary_version": "6.0.123-0ubuntu1~22.04.1", "binary_name": "dotnet-sdk-6.0" }, { "binary_version": "6.0.123-0ubuntu1~22.04.1", "binary_name": "dotnet-sdk-6.0-dbgsym" }, { "binary_version": "6.0.123-0ubuntu1~22.04.1", "binary_name": "dotnet-sdk-6.0-source-built-artifacts" }, { "binary_version": "6.0.123-0ubuntu1~22.04.1", "binary_name": "dotnet-targeting-pack-6.0" }, { "binary_version": "6.0.123-0ubuntu1~22.04.1", "binary_name": "dotnet-templates-6.0" }, { "binary_version": "6.0.123-0ubuntu1~22.04.1", "binary_name": "dotnet6" }, { "binary_version": "6.0.123-0ubuntu1~22.04.1", "binary_name": "netstandard-targeting-pack-2.1" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "7.0.112-0ubuntu1~22.04.1", "binary_name": "aspnetcore-runtime-7.0" }, { "binary_version": "7.0.112-0ubuntu1~22.04.1", "binary_name": "aspnetcore-targeting-pack-7.0" }, { "binary_version": "7.0.112-0ubuntu1~22.04.1", "binary_name": "dotnet-apphost-pack-7.0" }, { "binary_version": "7.0.112-0ubuntu1~22.04.1", "binary_name": "dotnet-apphost-pack-7.0-dbgsym" }, { "binary_version": "7.0.112-0ubuntu1~22.04.1", "binary_name": "dotnet-host-7.0" }, { "binary_version": "7.0.112-0ubuntu1~22.04.1", "binary_name": "dotnet-host-7.0-dbgsym" }, { "binary_version": "7.0.112-0ubuntu1~22.04.1", "binary_name": "dotnet-hostfxr-7.0" }, { "binary_version": "7.0.112-0ubuntu1~22.04.1", "binary_name": "dotnet-hostfxr-7.0-dbgsym" }, { "binary_version": "7.0.112-0ubuntu1~22.04.1", "binary_name": "dotnet-runtime-7.0" }, { "binary_version": "7.0.112-0ubuntu1~22.04.1", "binary_name": "dotnet-runtime-7.0-dbgsym" }, { "binary_version": "7.0.112-0ubuntu1~22.04.1", "binary_name": "dotnet-sdk-7.0" }, { "binary_version": "7.0.112-0ubuntu1~22.04.1", "binary_name": "dotnet-sdk-7.0-dbgsym" }, { "binary_version": "7.0.112-0ubuntu1~22.04.1", "binary_name": "dotnet-sdk-7.0-source-built-artifacts" }, { "binary_version": "7.0.112-0ubuntu1~22.04.1", "binary_name": "dotnet-targeting-pack-7.0" }, { "binary_version": "7.0.112-0ubuntu1~22.04.1", "binary_name": "dotnet-templates-7.0" }, { "binary_version": "7.0.112-0ubuntu1~22.04.1", "binary_name": "dotnet7" }, { "binary_version": "7.0.112-0ubuntu1~22.04.1", "binary_name": "netstandard-targeting-pack-2.1-7.0" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "8.0.2-0ubuntu1~22.04.1", "binary_name": "aspnetcore-runtime-8.0" }, { "binary_version": "8.0.2-0ubuntu1~22.04.1", "binary_name": "aspnetcore-targeting-pack-8.0" }, { "binary_version": "8.0.2-0ubuntu1~22.04.1", "binary_name": "dotnet-apphost-pack-8.0" }, { "binary_version": "8.0.2-0ubuntu1~22.04.1", "binary_name": "dotnet-apphost-pack-8.0-dbgsym" }, { "binary_version": "8.0.2-0ubuntu1~22.04.1", "binary_name": "dotnet-host-8.0" }, { "binary_version": "8.0.2-0ubuntu1~22.04.1", "binary_name": "dotnet-host-8.0-dbgsym" }, { "binary_version": "8.0.2-0ubuntu1~22.04.1", "binary_name": "dotnet-hostfxr-8.0" }, { "binary_version": "8.0.2-0ubuntu1~22.04.1", "binary_name": "dotnet-hostfxr-8.0-dbgsym" }, { "binary_version": "8.0.2-0ubuntu1~22.04.1", "binary_name": "dotnet-runtime-8.0" }, { "binary_version": "8.0.2-0ubuntu1~22.04.1", "binary_name": "dotnet-runtime-8.0-dbgsym" }, { "binary_version": "8.0.102-0ubuntu1~22.04.1", "binary_name": "dotnet-sdk-8.0" }, { "binary_version": "8.0.102-0ubuntu1~22.04.1", "binary_name": "dotnet-sdk-8.0-dbgsym" }, { "binary_version": "8.0.102-0ubuntu1~22.04.1", "binary_name": "dotnet-sdk-8.0-source-built-artifacts" }, { "binary_version": "8.0.2-0ubuntu1~22.04.1", "binary_name": "dotnet-targeting-pack-8.0" }, { "binary_version": "8.0.102-0ubuntu1~22.04.1", "binary_name": "dotnet-templates-8.0" }, { "binary_version": "8.0.102-8.0.2-0ubuntu1~22.04.1", "binary_name": "dotnet8" }, { "binary_version": "8.0.102-0ubuntu1~22.04.1", "binary_name": "netstandard-targeting-pack-2.1-8.0" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "2.2.5+dfsg2-6.1ubuntu2", "binary_name": "h2o" }, { "binary_version": "2.2.5+dfsg2-6.1ubuntu2", "binary_name": "h2o-dbgsym" }, { "binary_version": "2.2.5+dfsg2-6.1ubuntu2", "binary_name": "h2o-doc" }, { "binary_version": "2.2.5+dfsg2-6.1ubuntu2", "binary_name": "libh2o-dev" }, { "binary_version": "2.2.5+dfsg2-6.1ubuntu2", "binary_name": "libh2o-dev-common" }, { "binary_version": "2.2.5+dfsg2-6.1ubuntu2", "binary_name": "libh2o-evloop-dev" }, { "binary_version": "2.2.5+dfsg2-6.1ubuntu2", "binary_name": "libh2o-evloop0.13" }, { "binary_version": "2.2.5+dfsg2-6.1ubuntu2", "binary_name": "libh2o-evloop0.13-dbgsym" }, { "binary_version": "2.2.5+dfsg2-6.1ubuntu2", "binary_name": "libh2o0.13" }, { "binary_version": "2.2.5+dfsg2-6.1ubuntu2", "binary_name": "libh2o0.13-dbgsym" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "2.4.22-0ubuntu0.22.04.2", "binary_name": "haproxy" }, { "binary_version": "2.4.22-0ubuntu0.22.04.2", "binary_name": "haproxy-dbgsym" }, { "binary_version": "2.4.22-0ubuntu0.22.04.2", "binary_name": "haproxy-doc" }, { "binary_version": "2.4.22-0ubuntu0.22.04.2", "binary_name": "vim-haproxy" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "1.43.0-1ubuntu0.1", "binary_name": "libnghttp2-14" }, { "binary_version": "1.43.0-1ubuntu0.1", "binary_name": "libnghttp2-14-dbgsym" }, { "binary_version": "1.43.0-1ubuntu0.1", "binary_name": "libnghttp2-dev" }, { "binary_version": "1.43.0-1ubuntu0.1", "binary_name": "libnghttp2-doc" }, { "binary_version": "1.43.0-1ubuntu0.1", "binary_name": "nghttp2" }, { "binary_version": "1.43.0-1ubuntu0.1", "binary_name": "nghttp2-client" }, { "binary_version": "1.43.0-1ubuntu0.1", "binary_name": "nghttp2-client-dbgsym" }, { "binary_version": "1.43.0-1ubuntu0.1", "binary_name": "nghttp2-proxy" }, { "binary_version": "1.43.0-1ubuntu0.1", "binary_name": "nghttp2-proxy-dbgsym" }, { "binary_version": "1.43.0-1ubuntu0.1", "binary_name": "nghttp2-server" }, { "binary_version": "1.43.0-1ubuntu0.1", "binary_name": "nghttp2-server-dbgsym" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "9.0.58-1ubuntu0.2", "binary_name": "libtomcat9-embed-java" }, { "binary_version": "9.0.58-1ubuntu0.2", "binary_name": "libtomcat9-java" }, { "binary_version": "9.0.58-1ubuntu0.2", "binary_name": "tomcat9" }, { "binary_version": "9.0.58-1ubuntu0.2", "binary_name": "tomcat9-admin" }, { "binary_version": "9.0.58-1ubuntu0.2", "binary_name": "tomcat9-common" }, { "binary_version": "9.0.58-1ubuntu0.2", "binary_name": "tomcat9-docs" }, { "binary_version": "9.0.58-1ubuntu0.2", "binary_name": "tomcat9-examples" }, { "binary_version": "9.0.58-1ubuntu0.2", "binary_name": "tomcat9-user" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "2.2.5+dfsg2-8.1ubuntu3", "binary_name": "h2o" }, { "binary_version": "2.2.5+dfsg2-8.1ubuntu3", "binary_name": "h2o-dbgsym" }, { "binary_version": "2.2.5+dfsg2-8.1ubuntu3", "binary_name": "h2o-doc" }, { "binary_version": "2.2.5+dfsg2-8.1ubuntu3", "binary_name": "libh2o-dev" }, { "binary_version": "2.2.5+dfsg2-8.1ubuntu3", "binary_name": "libh2o-dev-common" }, { "binary_version": "2.2.5+dfsg2-8.1ubuntu3", "binary_name": "libh2o-evloop-dev" }, { "binary_version": "2.2.5+dfsg2-8.1ubuntu3", "binary_name": "libh2o-evloop0.13t64" }, { "binary_version": "2.2.5+dfsg2-8.1ubuntu3", "binary_name": "libh2o-evloop0.13t64-dbgsym" }, { "binary_version": "2.2.5+dfsg2-8.1ubuntu3", "binary_name": "libh2o0.13t64" }, { "binary_version": "2.2.5+dfsg2-8.1ubuntu3", "binary_name": "libh2o0.13t64-dbgsym" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "20.16.0+dfsg-1ubuntu1", "binary_name": "libnode-dev" }, { "binary_version": "20.16.0+dfsg-1ubuntu1", "binary_name": "libnode115" }, { "binary_version": "20.16.0+dfsg-1ubuntu1", "binary_name": "libnode115-dbgsym" }, { "binary_version": "20.16.0+dfsg-1ubuntu1", "binary_name": "nodejs" }, { "binary_version": "20.16.0+dfsg-1ubuntu1", "binary_name": "nodejs-dbgsym" }, { "binary_version": "20.16.0+dfsg-1ubuntu1", "binary_name": "nodejs-doc" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "10.1.23-1", "binary_name": "libtomcat10-embed-java" }, { "binary_version": "10.1.23-1", "binary_name": "libtomcat10-java" }, { "binary_version": "10.1.23-1", "binary_name": "tomcat10" }, { "binary_version": "10.1.23-1", "binary_name": "tomcat10-admin" }, { "binary_version": "10.1.23-1", "binary_name": "tomcat10-common" }, { "binary_version": "10.1.23-1", "binary_name": "tomcat10-docs" }, { "binary_version": "10.1.23-1", "binary_name": "tomcat10-examples" }, { "binary_version": "10.1.23-1", "binary_name": "tomcat10-user" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "9.2.4+ds-2", "binary_name": "trafficserver" }, { "binary_version": "9.2.4+ds-2", "binary_name": "trafficserver-dbgsym" }, { "binary_version": "9.2.4+ds-2", "binary_name": "trafficserver-dev" }, { "binary_version": "9.2.4+ds-2", "binary_name": "trafficserver-experimental-plugins" }, { "binary_version": "9.2.4+ds-2", "binary_name": "trafficserver-experimental-plugins-dbgsym" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "8.0.0-0ubuntu1", "binary_name": "aspnetcore-runtime-8.0" }, { "binary_version": "8.0.0-0ubuntu1", "binary_name": "aspnetcore-targeting-pack-8.0" }, { "binary_version": "8.0.0-0ubuntu1", "binary_name": "dotnet-apphost-pack-8.0" }, { "binary_version": "8.0.0-0ubuntu1", "binary_name": "dotnet-apphost-pack-8.0-dbgsym" }, { "binary_version": "8.0.0-0ubuntu1", "binary_name": "dotnet-host-8.0" }, { "binary_version": "8.0.0-0ubuntu1", "binary_name": "dotnet-host-8.0-dbgsym" }, { "binary_version": "8.0.0-0ubuntu1", "binary_name": "dotnet-hostfxr-8.0" }, { "binary_version": "8.0.0-0ubuntu1", "binary_name": "dotnet-hostfxr-8.0-dbgsym" }, { "binary_version": "8.0.0-0ubuntu1", "binary_name": "dotnet-runtime-8.0" }, { "binary_version": "8.0.0-0ubuntu1", "binary_name": "dotnet-runtime-8.0-dbgsym" }, { "binary_version": "8.0.100-0ubuntu1", "binary_name": "dotnet-sdk-8.0" }, { "binary_version": "8.0.100-0ubuntu1", "binary_name": "dotnet-sdk-8.0-dbgsym" }, { "binary_version": "8.0.100-0ubuntu1", "binary_name": "dotnet-sdk-8.0-source-built-artifacts" }, { "binary_version": "8.0.0-0ubuntu1", "binary_name": "dotnet-targeting-pack-8.0" }, { "binary_version": "8.0.100-0ubuntu1", "binary_name": "dotnet-templates-8.0" }, { "binary_version": "8.0.100-8.0.0-0ubuntu1", "binary_name": "dotnet8" }, { "binary_version": "8.0.100-0ubuntu1", "binary_name": "netstandard-targeting-pack-2.1-8.0" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "2.2.5+dfsg2-8.1ubuntu3", "binary_name": "h2o" }, { "binary_version": "2.2.5+dfsg2-8.1ubuntu3", "binary_name": "h2o-dbgsym" }, { "binary_version": "2.2.5+dfsg2-8.1ubuntu3", "binary_name": "h2o-doc" }, { "binary_version": "2.2.5+dfsg2-8.1ubuntu3", "binary_name": "libh2o-dev" }, { "binary_version": "2.2.5+dfsg2-8.1ubuntu3", "binary_name": "libh2o-dev-common" }, { "binary_version": "2.2.5+dfsg2-8.1ubuntu3", "binary_name": "libh2o-evloop-dev" }, { "binary_version": "2.2.5+dfsg2-8.1ubuntu3", "binary_name": "libh2o-evloop0.13t64" }, { "binary_version": "2.2.5+dfsg2-8.1ubuntu3", "binary_name": "libh2o-evloop0.13t64-dbgsym" }, { "binary_version": "2.2.5+dfsg2-8.1ubuntu3", "binary_name": "libh2o0.13t64" }, { "binary_version": "2.2.5+dfsg2-8.1ubuntu3", "binary_name": "libh2o0.13t64-dbgsym" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "2.6.15-1ubuntu2", "binary_name": "haproxy" }, { "binary_version": "2.6.15-1ubuntu2", "binary_name": "haproxy-dbgsym" }, { "binary_version": "2.6.15-1ubuntu2", "binary_name": "haproxy-doc" }, { "binary_version": "2.6.15-1ubuntu2", "binary_name": "vim-haproxy" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "1.58.0-1", "binary_name": "libnghttp2-14" }, { "binary_version": "1.58.0-1", "binary_name": "libnghttp2-14-dbgsym" }, { "binary_version": "1.58.0-1", "binary_name": "libnghttp2-dev" }, { "binary_version": "1.58.0-1", "binary_name": "libnghttp2-doc" }, { "binary_version": "1.58.0-1", "binary_name": "nghttp2" }, { "binary_version": "1.58.0-1", "binary_name": "nghttp2-client" }, { "binary_version": "1.58.0-1", "binary_name": "nghttp2-client-dbgsym" }, { "binary_version": "1.58.0-1", "binary_name": "nghttp2-proxy" }, { "binary_version": "1.58.0-1", "binary_name": "nghttp2-proxy-dbgsym" }, { "binary_version": "1.58.0-1", "binary_name": "nghttp2-server" }, { "binary_version": "1.58.0-1", "binary_name": "nghttp2-server-dbgsym" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "18.19.1+dfsg-6ubuntu5", "binary_name": "libnode-dev" }, { "binary_version": "18.19.1+dfsg-6ubuntu5", "binary_name": "libnode109" }, { "binary_version": "18.19.1+dfsg-6ubuntu5", "binary_name": "libnode109-dbgsym" }, { "binary_version": "18.19.1+dfsg-6ubuntu5", "binary_name": "nodejs" }, { "binary_version": "18.19.1+dfsg-6ubuntu5", "binary_name": "nodejs-dbgsym" }, { "binary_version": "18.19.1+dfsg-6ubuntu5", "binary_name": "nodejs-doc" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "9.2.3+ds-1+deb12u1build4", "binary_name": "trafficserver" }, { "binary_version": "9.2.3+ds-1+deb12u1build4", "binary_name": "trafficserver-dbgsym" }, { "binary_version": "9.2.3+ds-1+deb12u1build4", "binary_name": "trafficserver-dev" }, { "binary_version": "9.2.3+ds-1+deb12u1build4", "binary_name": "trafficserver-experimental-plugins" }, { "binary_version": "9.2.3+ds-1+deb12u1build4", "binary_name": "trafficserver-experimental-plugins-dbgsym" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "2.2.5+dfsg2-11", "binary_name": "h2o" }, { "binary_version": "2.2.5+dfsg2-11", "binary_name": "h2o-dbgsym" }, { "binary_version": "2.2.5+dfsg2-11", "binary_name": "h2o-doc" }, { "binary_version": "2.2.5+dfsg2-11", "binary_name": "libh2o-dev" }, { "binary_version": "2.2.5+dfsg2-11", "binary_name": "libh2o-dev-common" }, { "binary_version": "2.2.5+dfsg2-11", "binary_name": "libh2o-evloop-dev" }, { "binary_version": "2.2.5+dfsg2-11", "binary_name": "libh2o-evloop0.13t64" }, { "binary_version": "2.2.5+dfsg2-11", "binary_name": "libh2o-evloop0.13t64-dbgsym" }, { "binary_version": "2.2.5+dfsg2-11", "binary_name": "libh2o0.13t64" }, { "binary_version": "2.2.5+dfsg2-11", "binary_name": "libh2o0.13t64-dbgsym" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "20.18.1+dfsg-1ubuntu2", "binary_name": "libnode-dev" }, { "binary_version": "20.18.1+dfsg-1ubuntu2", "binary_name": "libnode115" }, { "binary_version": "20.18.1+dfsg-1ubuntu2", "binary_name": "libnode115-dbgsym" }, { "binary_version": "20.18.1+dfsg-1ubuntu2", "binary_name": "nodejs" }, { "binary_version": "20.18.1+dfsg-1ubuntu2", "binary_name": "nodejs-dbgsym" }, { "binary_version": "20.18.1+dfsg-1ubuntu2", "binary_name": "nodejs-doc" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }
{ "availability": "No subscription required", "ubuntu_priority": "high", "binaries": [ { "binary_version": "9.2.5+ds-1ubuntu1", "binary_name": "trafficserver" }, { "binary_version": "9.2.5+ds-1ubuntu1", "binary_name": "trafficserver-dbgsym" }, { "binary_version": "9.2.5+ds-1ubuntu1", "binary_name": "trafficserver-dev" }, { "binary_version": "9.2.5+ds-1ubuntu1", "binary_name": "trafficserver-experimental-plugins" }, { "binary_version": "9.2.5+ds-1ubuntu1", "binary_name": "trafficserver-experimental-plugins-dbgsym" } ], "priority_reason": "Listed in CISA Known Exploited Vulnerabilities Catalog" }