it.ucsf.edu

Security Update:The CERT Coordination Center (CERT/CC) has released information on vulnerabilities affecting HTTP/2 implementations

Status Type

Security Update

Date and Time

Wednesday, August 14, 2019 - 13:53

Reason

Security update

Impact

HTP/2 users

WHAT HAPPENED?

The CERT Coordination Center (CERT/CC) has released information on vulnerabilities affecting HTTP/2 implementations.

 

Advanced Users: For the full Public Announcement refer to Software Engineering Institute CERT Coordination Center VU#605641

at: https://www.kb.cert.org/vuls/id/605641/

 

AFFECTED SYSTEMS:

  • HTTP/2

 

WHAT'S THE PROBLEM?

An attacker could exploit these vulnerabilities to cause a denial-of-service (DoS) condition. Attacks can consume excessive system resources and lead to distributed DoS (DDoS) attacks.

 

WHAT DO YOU NEED TO DO?

Install the latest versions:

  1. If you are supported by ITFS or have different IT support, no action on your part is required.
  2. If you do not have IT support or they do not support your computer, please review the CVEs listed at the above link for update information.

 

RELATED LINKS