VDB
ALSA-2023%3A5711
ALSA-2023%3A5711
PUBLISHED
Moderate: nginx security update
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| AlmaLinux:9 | nginx-core | 0, 0 |
| AlmaLinux:9 | nginx | 0, 0 |
| AlmaLinux:9 | nginx-mod-http-perl | 0, 0 |
| AlmaLinux:9 | nginx-mod-http-image-filter | 0, 0 |
| AlmaLinux:9 | nginx-all-modules | 0, 0 |
| AlmaLinux:9 | nginx-mod-mail | 0, 0 |
| AlmaLinux:9 | nginx-mod-http-xslt-filter | 0, 0 |
| AlmaLinux:9 | nginx-mod-stream | 0, 0 |
| AlmaLinux:9 | nginx-filesystem | 0, 0 |
| AlmaLinux:9 | nginx-mod-devel | 0, 0 |
Exploit Intelligence
- HTTP/2 attack simulation & defense lab - Slowloris, Rapid Reset (CVE-2023-44487), HPACK Bomb attacks with 5 layered defenses. Built in pure Python with raw sockets and h2 library. (github-poc-repo)
- HTTP/2 attack simulation & defense lab - Slowloris, Rapid Reset (CVE-2023-44487), HPACK Bomb attacks with 5 layered defenses. Built in pure Python with raw sockets and h2 library. (github-poc-repo)
- HTTP/2 attack simulation & defense lab - Slowloris, Rapid Reset (CVE-2023-44487), HPACK Bomb attacks with 5 layered defenses. Built in pure Python with raw sockets and h2 library. (github-poc)
- HTTP/2 attack simulation & defense lab - Slowloris, Rapid Reset (CVE-2023-44487), HPACK Bomb attacks with 5 layered defenses. Built in pure Python with raw sockets and h2 library. (github-poc)
- Educational environment for LTAT.04.022 Homework 4. (github-poc-repo)
- Educational environment for LTAT.04.022 Homework 4. (github-poc-repo)
- Educational environment for LTAT.04.022 Homework 4. (github-poc)
- Educational environment for LTAT.04.022 Homework 4. (github-poc)
- TYuan0816/cve-2023-44487 (github-poc-repo)
- TYuan0816/cve-2023-44487 (github-poc-repo)
…and 136 more exploits
Timeline
- Oct 16, 2023 CVE Published
- Oct 17, 2023 CVE Updated
- Mar 6, 2026 Distribution Patch
- Mar 6, 2026 Distribution Patch
- Mar 6, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2023:5711 vendor-advisory
- https://access.redhat.com/security/cve/CVE-2023-44487 third-party-advisory
- https://bugzilla.redhat.com/2242803 third-party-advisory
- https://errata.almalinux.org/9/ALSA-2023-5711.html vendor-advisory