DirectorySecurity advisories
Sign in

Security advisories

GHSA-7f4j-64p6-5h5v

Published

Last updated

https://github.com/advisories/GHSA-7f4j-64p6-5h5v

Description

Traefik affected by HTTP/2 CONTINUATION flood in net/http. There is a potential vulnerability in Traefik managing HTTP/2 connections.

More details in the CVE-2023-45288.

Patches

Workarounds

No workaround

For more information

If you have any questions or comments about this advisory, please open an issue.

References

  • https://github.com/traefik/traefik/security/advisories/GHSA-7f4j-64p6-5h5v
  • https://github.com/traefik/traefik
  • https://github.com/traefik/traefik/releases/tag/v2.11.2
  • https://github.com/traefik/traefik/releases/tag/v3.0.0-rc5

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore.

Products

Chainguard Images

Developer

Open sourceDocs

Resources

Unchained blogChainguard LabsCustomer storiesScannersSecurityEducation

Company

AboutNewsroomCareersChainguard loveLegalContact

Follow

TwitterGitHubLinkedInTikTok

© 2024 Chainguard, Inc.