AVG-1022 log

Package nginx-mainline
Status Fixed
Severity Medium
Type denial of service
Affected 1.17.2-1
Fixed 1.17.3-1
Current 1.17.4-1 [community]
Ticket None
Created Wed Aug 14 16:02:25 2019
Issue Severity Remote Type Description
CVE-2019-9516 Medium Yes Denial of service
An issue has been found in several HTTP/2 implementations, where the attacker sends a stream of headers with a 0-length header name and 0-length header...
CVE-2019-9513 Medium Yes Denial of service
An issue has been found in several HTTP/2 implementations, where the attacker creates multiple request streams and continually shuffles the priority of the...
CVE-2019-9511 Medium Yes Denial of service
An issue has been found in several HTTP/2 implementations, where the attacker requests a large amount of data from a specified resource over multiple...
Date Advisory Package Description
16 Aug 2019 ASA-201908-12 nginx-mainline denial of service
References
https://mailman.nginx.org/pipermail/nginx-announce/2019/000249.html