RHSA-2026:27114HighCVSS 7.5
Red Hat Security Advisory: Red Hat OpenShift Service Mesh 2.6.17
🔗 CVE IDs covered (2)
📋 Description
CVE-2026-47774 — envoy: envoy: HTTP/2 Remote Denial of Service via HPACK compression bomb and Slowloris-style attack CVE-2026-49975 — httpd: HTTP/2: Remote Denial of Service via compression bomb and Slowloris-style attack
🔗 References (8)
- selfhttps://access.redhat.com/errata/RHSA-2026:27114
- externalhttps://access.redhat.com/security/cve/CVE-2026-47774
- externalhttps://access.redhat.com/security/cve/CVE-2026-49975
- externalhttps://access.redhat.com/security/cve/cve-2026-47774
- externalhttps://access.redhat.com/security/cve/cve-2026-49975
- externalhttps://access.redhat.com/security/updates/classification
- externalhttps://access.redhat.com/security/updates/classification/
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_27114.json