{"id":"CLSA-2025-1762538558","summary":"containernetworking-plugins: Fix of 13 CVEs","details":"- rebuild with newer golang to fix multiple security vulnerabilities:\n- CVE-2023-24534: fix HTTP/2 rapid reset attack leading to denial of service\n- CVE-2023-29400: fix HTTP/2 frame processing panic leading to denial of service\n- CVE-2022-41725: fix HTTP/2 server connection handling causing premature closure\n- CVE-2022-41724: fix HTTP/2 server connection misuse causing resource exhaustion\n- CVE-2023-24538: fix HTTP/2 request handling causing denial of service\n- CVE-2023-39322: fix HTTP/2 connection resource exhaustion and denial of service\n- CVE-2023-24539: fix HTTP/2 request handling causing excessive memory consumption\n- CVE-2023-39321: fix HTTP/2 frame processing causing panic and denial of service\n- CVE-2024-24788: fix HTTP/2 connection handling causing denial of service\n- CVE-2022-41723: fix HTTP/2 server connection handling causing resource exhaustion\n- CVE-2023-45287: fix RSA-based TLS key exchange timing attack vulnerability\n- CVE-2024-34156: fix HTTP/2 connection resource exhaustion and denial of service\n- CVE-2023-24536: fix HTTP/2 request handling causing denial of service","modified":"2026-05-27T11:34:47.101045785Z","published":"2026-05-13T10:06:56Z","upstream":["CVE-2022-41723","CVE-2022-41724","CVE-2022-41725","CVE-2023-24534","CVE-2023-24536","CVE-2023-24538","CVE-2023-24539","CVE-2023-29400","CVE-2023-39321","CVE-2023-39322","CVE-2023-45287","CVE-2024-24788","CVE-2024-34156"],"references":[{"type":"ADVISORY","url":"https://errata.tuxcare.com/els_os/almalinux9.2esu/CLSA-2025-1762538558.html"}],"affected":[{"package":{"name":"containernetworking-plugins","ecosystem":"TuxCare:AlmaLinux:9.2","purl":"pkg:rpm/tuxcare/containernetworking-plugins?distro=almalinux-9.2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:1.2.0-1.el9.tuxcare.els2"}]}],"database_specific":{"source":"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.2esu/CLSA-2025-1762538558.json"}}],"schema_version":"1.7.5"}