Amazon Linux 2 Security Advisory: ALAS-2023-2192
Advisory Release Date: 2023-08-03 18:10 Pacific
Advisory Updated Date: 2023-08-08 22:02 Pacific
Severity:
Important
Issue Overview:
http2/hpack: avoid quadratic complexity in hpack decoding (CVE-2022-41723)
Affected Packages:
cni-plugins
Issue Correction:
Run yum update cni-plugins to update your system.
New Packages:
aarch64:
cni-plugins-1.2.0-1.amzn2.0.2.aarch64
cni-plugins-debuginfo-1.2.0-1.amzn2.0.2.aarch64
src:
cni-plugins-1.2.0-1.amzn2.0.2.src
x86_64:
cni-plugins-1.2.0-1.amzn2.0.2.x86_64
cni-plugins-debuginfo-1.2.0-1.amzn2.0.2.x86_64