Debian Security Update DSA-5540 jetty9 - security update

Thread starter LinuxBot
Start date Oct 31, 2023

LinuxBot

Member

Oct 31, 2023

#1

Two remotely exploitable security vulnerabilities were discovered in Jetty 9, a Java based web server and servlet engine. The HTTP/2 protocol implementation did not sufficiently verify if HPACK header values exceed their size limit. Furthermore the HTTP/2 protocol allowed a denial of service (server resource consumption) because request cancellation can reset many streams quickly. This problem is also known as Rapid Reset Attack.

Continue reading...

You must log in or register to reply here.

Similar threads

Debian Security Update DSA-6005-1 jetty9 - security update

Replies: 0

Views: 223

Sep 19, 2025

LinuxBot

Debian Security Update DSA-6006-1 jetty12 - security update

Replies: 0

Views: 225

Sep 19, 2025

LinuxBot

Debian Security Update DSA-6120-1 tomcat10 - security update

Replies: 0

Views: 81

Feb 6, 2026

LinuxBot

Debian Security Update DSA-6121-1 tomcat11 - security update

Replies: 0

Views: 83

Feb 6, 2026

LinuxBot

Debian Security Update DSA-5540-1 jetty9 - security update

Replies: 0

Views: 438

Nov 17, 2023

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Members online

Total: 2,446 (members: 3, guests: 2,443)

Latest posts

Videogame Sountrack
- Latest: Fymgee
- 7 minutes ago
Linux Gaming
trixie... xfce
- Latest: Fymgee
- 12 minutes ago
General Linux Topics
Guidance with bash shell scripting?
- Latest: beanburrito
- 27 minutes ago
Command Line
O
Linux on Macbook 12" early 2016
- Latest: onzem
- 28 minutes ago
General Linux Topics
L
Is this scripting language understandable?
- Latest: lily64mark
- Today at 6:16 AM
Dev-ops

Top