Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2022-27664

In net/http in Go before 1.18.6 and 1.19.x before 1.19.1, attackers can cause a denial of service because an HTTP/2 connection can hang during closing if shutdown were preempted by a fatal error. (CVE-2022-27664)

Source

ALAS2DOCKER-2022-021

Amazon Linux 2 Security Advisory: ALASDOCKER-2022-021
Advisory Release Date: 2022-10-03 19:35 Pacific
Advisory Updated Date: 2022-10-11 22:30 Pacific

Severity: Medium

References: CVE-2022-27664

Issue Overview:

In net/http in Go before 1.18.6 and 1.19.x before 1.19.1, attackers can cause a denial of service because an HTTP/2 connection can hang during closing if shutdown were preempted by a fatal error. (CVE-2022-27664)

Affected Packages:

containerd, docker

Issue Correction:
Run yum update containerd to update your system.
Run yum update docker to update your system.

New Packages:

aarch64:
    containerd-1.6.6-1.amzn2.0.2.aarch64
    containerd-stress-1.6.6-1.amzn2.0.2.aarch64
    containerd-debuginfo-1.6.6-1.amzn2.0.2.aarch64
    docker-20.10.17-1.amzn2.0.1.aarch64
    docker-debuginfo-20.10.17-1.amzn2.0.1.aarch64

src:
    containerd-1.6.6-1.amzn2.0.2.src
    docker-20.10.17-1.amzn2.0.1.src

x86_64:
    containerd-1.6.6-1.amzn2.0.2.x86_64
    containerd-stress-1.6.6-1.amzn2.0.2.x86_64
    containerd-debuginfo-1.6.6-1.amzn2.0.2.x86_64
    docker-20.10.17-1.amzn2.0.1.x86_64
    docker-debuginfo-20.10.17-1.amzn2.0.1.x86_64

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

ALAS2DOCKER-2022-021

ALAS2DOCKER-2022-021

Vulmon Search

About

Products

Connect