openshift/openshift-docs
1
0
Fork 0
mirror of https://github.com/openshift/openshift-docs.git synced 2026-02-07 09:46:53 +01:00
Code Issues Releases Activity
Files
b861fb8d1fe02da170cbb977e5f74d9d1d76384c
openshift-docs/modules/oadp-release-notes-1-1-7.adoc
Andy Arnold 4cac075b7b OADP-3182: Split and Tidy up Release Notes 
Signed-off-by: Andy Arnold <anarnold@redhat.com>
2023-12-07 00:34:58 +00:00

33 lines
1.4 KiB
Plaintext
Raw Blame History

// Module included in the following assemblies:
//
// * backup_and_restore/oadp-release-notes-1-1.adoc
:_mod-docs-content-type: REFERENCE
[id="migration-oadp-release-notes-1-1-7_{context}"]
= OADP 1.1.7 release notes
The OADP 1.1.7 release notes lists any resolved issues and known issues.
[id="resolved-issues1.1.7_{context}"]
== Resolved issues
The following highlighted issues are resolved in OADP 1.1.7:
.Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)
In previous releases of OADP 1.1, the HTTP/2 protocol was susceptible to a denial of service attack because request cancellation could reset multiple streams quickly. The server had to set up and tear down the streams while not hitting any server-side limit for the maximum number of active streams per connection. This resulted in a denial of service due to server resource consumption. For a list of all OADP issues associated with this CVE, see the following link:https://issues.redhat.com/browse/OADP-2868?filter=12421248[Jira list].
For more information, see link:https://access.redhat.com/security/cve/cve-2023-39325[CVE-2023-39325 (Rapid Reset Attack)].
For a complete list of all issues resolved in the release of OADP 1.1.7, see the list of link:https://issues.redhat.com/browse/OADP-2094?filter=12422262[OADP 1.1.7 resolved issues] in Jira.
[id="known-issues1.1.7_{context}"]
== Known issues
There are no known issues in the release of OADP 1.1.7.
View Git Blame Copy Permalink