Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service. The attacker opens a number of streams and sends an invalid request over each stream that should solicit a stream of RSTSTREAM frames from the peer. Depending on how the peer queues the RSTSTREAM frames, this can consume excess memory, CPU, or both.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "python-twisted-bin-dbg": "17.9.0-2ubuntu0.1", "python-twisted-bin": "17.9.0-2ubuntu0.1", "python-twisted-words": "17.9.0-2ubuntu0.1", "python-twisted-web": "17.9.0-2ubuntu0.1", "python3-twisted": "17.9.0-2ubuntu0.1", "python-twisted-conch": "1:17.9.0-2ubuntu0.1", "python-twisted": "17.9.0-2ubuntu0.1", "python-twisted-news": "17.9.0-2ubuntu0.1", "python-twisted-runner-dbg": "17.9.0-2ubuntu0.1", "twisted-doc": "17.9.0-2ubuntu0.1", "python-twisted-names": "17.9.0-2ubuntu0.1", "python-twisted-mail": "17.9.0-2ubuntu0.1", "python3-twisted-bin": "17.9.0-2ubuntu0.1", "python-twisted-core": "17.9.0-2ubuntu0.1", "python3-twisted-bin-dbg": "17.9.0-2ubuntu0.1", "python-twisted-runner": "17.9.0-2ubuntu0.1" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libh2o-dev": "2.2.5+dfsg2-3", "h2o-doc": "2.2.5+dfsg2-3", "libh2o0.13-dbgsym": "2.2.5+dfsg2-3", "libh2o-evloop0.13-dbgsym": "2.2.5+dfsg2-3", "libh2o-dev-common": "2.2.5+dfsg2-3", "h2o-dbgsym": "2.2.5+dfsg2-3", "libh2o-evloop0.13": "2.2.5+dfsg2-3", "libh2o0.13": "2.2.5+dfsg2-3", "h2o": "2.2.5+dfsg2-3", "libh2o-evloop-dev": "2.2.5+dfsg2-3" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libnode64-dbgsym": "10.19.0~dfsg-3ubuntu1", "libnode64": "10.19.0~dfsg-3ubuntu1", "nodejs-doc": "10.19.0~dfsg-3ubuntu1", "nodejs": "10.19.0~dfsg-3ubuntu1", "libnode-dev": "10.19.0~dfsg-3ubuntu1", "nodejs-dbgsym": "10.19.0~dfsg-3ubuntu1" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "trafficserver": "8.0.5+ds-1", "trafficserver-dbgsym": "8.0.5+ds-1", "trafficserver-experimental-plugins": "8.0.5+ds-1", "trafficserver-experimental-plugins-dbgsym": "8.0.5+ds-1", "trafficserver-dev": "8.0.5+ds-1" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "python-twisted-bin-dbg": "18.9.0-6ubuntu1", "python-twisted-bin": "18.9.0-6ubuntu1", "python-twisted-words": "18.9.0-6ubuntu1", "python-twisted-web": "18.9.0-6ubuntu1", "python3-twisted": "18.9.0-6ubuntu1", "python-twisted-conch": "1:18.9.0-6ubuntu1", "python-twisted": "18.9.0-6ubuntu1", "python-twisted-news": "18.9.0-6ubuntu1", "python-twisted-runner-dbg": "18.9.0-6ubuntu1", "twisted-doc": "18.9.0-6ubuntu1", "python-twisted-names": "18.9.0-6ubuntu1", "python-twisted-mail": "18.9.0-6ubuntu1", "python3-twisted-bin": "18.9.0-6ubuntu1", "python-twisted-core": "18.9.0-6ubuntu1", "python3-twisted-bin-dbg": "18.9.0-6ubuntu1", "python-twisted-runner": "18.9.0-6ubuntu1" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "nodejs-doc": "12.22.9~dfsg-1ubuntu3", "libnode72": "12.22.9~dfsg-1ubuntu3", "nodejs": "12.22.9~dfsg-1ubuntu3", "libnode-dev": "12.22.9~dfsg-1ubuntu3", "libnode72-dbgsym": "12.22.9~dfsg-1ubuntu3", "nodejs-dbgsym": "12.22.9~dfsg-1ubuntu3" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libnode108": "18.13.0+dfsg1-1ubuntu2", "libnode108-dbgsym": "18.13.0+dfsg1-1ubuntu2", "nodejs": "18.13.0+dfsg1-1ubuntu2", "libnode-dev": "18.13.0+dfsg1-1ubuntu2", "nodejs-doc": "18.13.0+dfsg1-1ubuntu2", "nodejs-dbgsym": "18.13.0+dfsg1-1ubuntu2" } ] }