CNNVD-202508-1338 Information

CNNVD ID

CNNVD-202508-1338

Related CVE

CVE-2025-8671

• CNNVD Published: 2025-08-13

Description (Chinese)

SUSE Linux Enterprise Desktop是德国SUSE公司的一个企业服务器版Linux桌面操作系统。 SUSE Linux多款产品存在安全漏洞，该漏洞源于HTTP/2实现中流重置导致服务器资源消耗过度，可能导致拒绝服务攻击。以下产品受到影响：Enterprise Module for Development Tools、Enterprise High Performance Computing、Enterprise Desktop等。

Description (English)

SUSE Linux Enterprise Desktop is an enterprise server version of the Linux desktop operating system of SUSE. SUSE Linux has a safety loophole, which stems from the over-consumption of server resources as a result of the implementation of the midstream replacement of HTTP/2 and may lead to a denial of service attacks. The following products have been affected: Enterprise Modeule for Development Tools, Enterprise High Personalization Company, Enterprise Desktop, etc.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

SUSE

Published

2025-08-13

Last Modified

2026-02-24

References

https://galbarnahum.com/made-you-reset https://github.com/h2o/h2o/commit/4729b661e3c6654198d2cc62997e1af58bef4b80 https://github.com/h2o/h2o/security/advisories/GHSA-mrjm-qq9m-9mjq https://gitlab.isc.org/isc-projects/bind9/-/issues/5325 https://kb.cert.org/vuls/id/767506 https://support2.windriver.com/index.php?page=security-notices https://varnish-cache.org/security/VSV00017.html https://www.fastlystatus.com/incident/377810 https://www.suse.com/support/kb/doc/?id=000021980 https://access.redhat.com/security/cve/cve-2025-8671