AVG-1024 log

Package libnghttp2
Status Fixed
Severity Medium
Type denial of service
Affected 1.39.1-1
Fixed 1.39.2-1
Current 1.39.2-2 [core]
Ticket None
Created Wed Aug 14 16:07:58 2019
Issue Severity Remote Type Description
CVE-2019-9513 Medium Yes Denial of service
An issue has been found in several HTTP/2 implementations, where the attacker creates multiple request streams and continually shuffles the priority of the...
CVE-2019-9511 Medium Yes Denial of service
An issue has been found in several HTTP/2 implementations, where the attacker requests a large amount of data from a specified resource over multiple...
Date Advisory Package Description
27 Aug 2019 ASA-201908-17 libnghttp2 denial of service
References
https://github.com/nghttp2/nghttp2/releases/tag/v1.39.2