Diffusion FreeBSD ports repository dcd7c23bd4dd

www/h2o: patch for HTTP2 rapid reset attack, deprecate
dcd7c23bd4dd
Actions

Tags

None

Referenced Files

None

Subscribers

None

Description

www/h2o: patch for HTTP2 rapid reset attack, deprecate

downstream dnsdist project has backported a fix for this specific issue
deprecation is still planned, and port should not be considered secure
pet port in line with www/h2o-devel

See https://github.com/h2o/h2o/pull/3293 for further details

Obtained from: Remi Gacogne <remi.gacogne@powerdns.com>
Security: CVE-2023-44487
Security: https://github.com/h2o/h2o/security/advisories/GHSA-2m7v-gc89-fjqf

Details

Provenance

dch	Authored on Oct 28 2023, 10:13 PM

Parents

R11:c730026ddf13: sysutils/graylog: update to 5.1.7

Branches

Unknown

Tags

Unknown

Event Timeline

dch committed R11:dcd7c23bd4dd: www/h2o: patch for HTTP2 rapid reset attack, deprecate (authored by dch).Oct 28 2023, 10:13 PM

dch mentioned this in R11:d225b5157f7b: www/h2o: patch for HTTP2 rapid reset attack, deprecate.Oct 28 2023, 10:25 PM

Changes (2)

Path

Size

www/

h2o/

R11:dcd7c23bd4dd

www/h2o/Makefile

Loading...

www/h2o/distinfo

Loading...