AVG-1024 log
| Package | libnghttp2 |
| Status | Fixed |
| Severity | Medium |
| Type | denial of service |
| Affected | 1.39.1-1 |
| Fixed | 1.39.2-1 |
| Current | 1.68.0-1 [core] |
| Ticket | None |
| Created | Wed Aug 14 16:07:58 2019 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2019-9513 | Medium | Yes | Denial of service | An issue has been found in several HTTP/2 implementations, where the attacker creates multiple request streams and continually shuffles the priority of the... |
| CVE-2019-9511 | Medium | Yes | Denial of service | An issue has been found in several HTTP/2 implementations, where the attacker requests a large amount of data from a specified resource over multiple... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 27 Aug 2019 | ASA-201908-17 | libnghttp2 | denial of service |
| References |
|---|
https://github.com/nghttp2/nghttp2/releases/tag/v1.39.2 |