Alias: CVE-2023-44487: The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023. According to https://varnish-cache.org/security/VSV00013.html#vsv00013, fixed in 6.0.12, 7.3.1, and 7.4.2.