Re: CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations
Open Source Security
Posted by Alan Coopersmith on Oct 20
https://github.com/icing/blog/blob/main/h2-rapid-reset.md clears that up
and explains why Apache issued a fix under a different CVE id for the
problem identified in that discussion, as we saw on this list yesterday.