A regression was discovered in the Http2UpgradeHandler class of Tomcat 9 introduced by the patch to fix CVE-2023-44487 (Rapid Reset Attack). A wrong value for the overheadcount variable forced HTTP2 connections to close early.
Archive for October 16th, 2023
5 results.
Comment
William Khem-Marquez discovered that using malicious plugins for the the Babel JavaScript compiler could result in arbitrary code execution during compilation
– fix cookie injection with none file (CVE-2023-38546) – fix SOCKS5 heap buffer overflow (CVE-2023-38545)
fix for CVE-2023-43115 (#2241112)
Join WordPress Executive Director, Josepha Haden Chomphosy, as she goes back to the basics and offers some insight into block patterns for WordPress. Don’t miss this exciting insider’s look!