Release date:
2025-11-07 18:02:43 UTC
Description:
- rebuild with newer golang to fix multiple security vulnerabilities:
- CVE-2023-24534: fix HTTP/2 rapid reset attack leading to denial of service
- CVE-2023-29400: fix HTTP/2 frame processing panic leading to denial of service
- CVE-2022-41725: fix HTTP/2 server connection handling causing premature closure
- CVE-2022-41724: fix HTTP/2 server connection misuse causing resource exhaustion
- CVE-2023-24538: fix HTTP/2 request handling causing denial of service
- CVE-2023-39322: fix HTTP/2 connection resource exhaustion and denial of service
- CVE-2023-24539: fix HTTP/2 request handling causing excessive memory consumption
- CVE-2023-39321: fix HTTP/2 frame processing causing panic and denial of service
- CVE-2024-24788: fix HTTP/2 connection handling causing denial of service
- CVE-2022-41723: fix HTTP/2 server connection handling causing resource exhaustion
- CVE-2023-45287: fix RSA-based TLS key exchange timing attack vulnerability
- CVE-2024-34156: fix HTTP/2 connection resource exhaustion and denial of service
- CVE-2023-24536: fix HTTP/2 request handling causing denial of service
Updated packages:
-
containernetworking-plugins-1.2.0-1.el9.tuxcare.els2.x86_64.rpm
sha:e78995b99ec02f9778042da880d1c749ab1f037d2b45c7b4ac324e689e992494
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
