AVG-1022 log
| Package | nginx-mainline |
| Status | Fixed |
| Severity | Medium |
| Type | denial of service |
| Affected | 1.17.2-1 |
| Fixed | 1.17.3-1 |
| Current | 1.27.2-1 [extra] |
| Ticket | None |
| Created | Wed Aug 14 16:02:25 2019 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2019-9516 | Medium | Yes | Denial of service | An issue has been found in several HTTP/2 implementations, where the attacker sends a stream of headers with a 0-length header name and 0-length header... |
| CVE-2019-9513 | Medium | Yes | Denial of service | An issue has been found in several HTTP/2 implementations, where the attacker creates multiple request streams and continually shuffles the priority of the... |
| CVE-2019-9511 | Medium | Yes | Denial of service | An issue has been found in several HTTP/2 implementations, where the attacker requests a large amount of data from a specified resource over multiple... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 16 Aug 2019 | ASA-201908-12 | nginx-mainline | denial of service |
| References |
|---|
https://mailman.nginx.org/pipermail/nginx-announce/2019/000249.html |