Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

THREESCALE-10224 CVE-2023-44487 http/2 rapid reset #1417

Merged
merged 6 commits into from
Nov 2, 2023
Merged

THREESCALE-10224 CVE-2023-44487 http/2 rapid reset #1417

merged 6 commits into from
Nov 2, 2023

Commits on Oct 31, 2023

  1. THREESCALE-10224 CVE-2023-44487 http/2 rapid reset 

    Signed-off-by: Eguzki Astiz Lezaun <eastizle@redhat.com>
    @eguzki
    eguzki committed Oct 31, 2023
    Configuration menu
    Copy the full SHA
    df6f074 View commit details
    Browse the repository at this point in the history

  2. update changelog with PR number

    @eguzki
    eguzki committed Oct 31, 2023
    Configuration menu
    Copy the full SHA
    ed7a335 View commit details
    Browse the repository at this point in the history

  3. codecov: 3% tolerance

    @eguzki
    eguzki committed Oct 31, 2023
    Configuration menu
    Copy the full SHA
    8143c1d View commit details
    Browse the repository at this point in the history

  4. enable lua_check_client_abort 

    Makes HTTP2 reset streams to be accounted and handled by apicast. Ref CVE-2023-44487
    @eguzki
    eguzki committed Oct 31, 2023
    Configuration menu
    Copy the full SHA
    34ec61f View commit details
    Browse the repository at this point in the history

  5. remove unnecessary logs

    @eguzki
    eguzki committed Oct 31, 2023
    Configuration menu
    Copy the full SHA
    02c2ea0 View commit details
    Browse the repository at this point in the history

Commits on Nov 2, 2023

  1. fix busted tests: spec/policy/apicast/apicast_spec.lua

    @eguzki
    eguzki committed Nov 2, 2023
    Configuration menu
    Copy the full SHA
    4d1c3e6 View commit details
    Browse the repository at this point in the history