Closed
Description
Detailed Description of the Problem
An issue for tracking how haproxy is affected by CVE-2023-44487
- https://cloud.google.com/blog/products/identity-security/how-it-works-the-novel-http2-rapid-reset-ddos-attack
- https://blog.cloudflare.com/zero-day-rapid-reset-http2-record-breaking-ddos-attack/
- https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack/
Expected Behavior
it should not be affected by CVE-2023-44487 :)
Steps to Reproduce the Behavior
see cloudflare technical blog
Do you have any idea what may have caused this?
h2 protocol level bug?
Do you have an idea how to solve the issue?
No response
What is your configuration?
not applicableOutput of haproxy -vv
not applicable
Last Outputs and Backtraces
No response
Additional Information
No response