vulnerability
Ubuntu: (Multiple Advisories) (CVE-2023-44487): .NET vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:N/I:N/A:C) | Oct 10, 2023 | Oct 11, 2023 | May 1, 2025 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
Oct 10, 2023
Added
Oct 11, 2023
Modified
May 1, 2025
Description
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
Solution(s)
ubuntu-pro-upgrade-aspnetcore-runtime-6-0ubuntu-pro-upgrade-aspnetcore-runtime-7-0ubuntu-pro-upgrade-aspnetcore-runtime-8-0ubuntu-pro-upgrade-dotnet-hostubuntu-pro-upgrade-dotnet-host-7-0ubuntu-pro-upgrade-dotnet-host-8-0ubuntu-pro-upgrade-dotnet-hostfxr-6-0ubuntu-pro-upgrade-dotnet-hostfxr-7-0ubuntu-pro-upgrade-dotnet-hostfxr-8-0ubuntu-pro-upgrade-dotnet-runtime-6-0ubuntu-pro-upgrade-dotnet-runtime-7-0ubuntu-pro-upgrade-dotnet-runtime-8-0ubuntu-pro-upgrade-dotnet-sdk-6-0ubuntu-pro-upgrade-dotnet-sdk-7-0ubuntu-pro-upgrade-dotnet-sdk-8-0ubuntu-pro-upgrade-dotnet6ubuntu-pro-upgrade-dotnet7ubuntu-pro-upgrade-dotnet8ubuntu-pro-upgrade-golang-1-20ubuntu-pro-upgrade-golang-1-20-goubuntu-pro-upgrade-golang-1-20-srcubuntu-pro-upgrade-golang-1-21ubuntu-pro-upgrade-golang-1-21-goubuntu-pro-upgrade-golang-1-21-srcubuntu-pro-upgrade-h2oubuntu-pro-upgrade-haproxyubuntu-pro-upgrade-libh2o0-13ubuntu-pro-upgrade-libnetty-javaubuntu-pro-upgrade-libnghttp2-14ubuntu-pro-upgrade-libnode-devubuntu-pro-upgrade-libnode64ubuntu-pro-upgrade-libnode72ubuntu-pro-upgrade-libtomcat8-embed-javaubuntu-pro-upgrade-libtomcat8-javaubuntu-pro-upgrade-nghttp2ubuntu-pro-upgrade-nghttp2-clientubuntu-pro-upgrade-nghttp2-proxyubuntu-pro-upgrade-nghttp2-serverubuntu-pro-upgrade-nodejsubuntu-pro-upgrade-nodejs-devubuntu-pro-upgrade-tomcat8ubuntu-pro-upgrade-tomcat9-commonubuntu-pro-upgrade-trafficserverubuntu-pro-upgrade-trafficserver-dev
References
- CVE-2023-44487
- https://attackerkb.com/topics/CVE-2023-44487
- DEBIAN-DSA-5521
- DEBIAN-DSA-5522
- DEBIAN-DSA-5540
- DEBIAN-DSA-5549
- UBUNTU-USN-6427-1
- UBUNTU-USN-6427-2
- UBUNTU-USN-6438-1
- UBUNTU-USN-6438-2
- UBUNTU-USN-6505-1
- UBUNTU-USN-6574-1
- UBUNTU-USN-6754-1
- UBUNTU-USN-6994-1
- UBUNTU-USN-7067-1
- UBUNTU-USN-7410-1
- UBUNTU-USN-7469-1
- UBUNTU-USN-7469-2
- UBUNTU-USN-7469-3
- UBUNTU-USN-7469-4
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.