Fedora 38: FEDORA-2024-ec22e51ec2 Critical: nghttp2 Denial of Service

fedora

April 20, 2024

fix CONTINUATION frames DoS (CVE-2024-28182)

Summary

This package contains the HTTP/2 client, server and proxy programs.

Update Information:

fix CONTINUATION frames DoS (CVE-2024-28182)

Topics Covered

security advisory Fedora DoS attack fix nghttp2

Change Log

* Thu Apr 4 2024 Jan Macku - 1.52.0-3 - fix CONTINUATION frames DoS (CVE-2024-28182)

References

[ 1 ] Bug #2268639 - CVE-2024-28182 nghttp2: CONTINUATION frames DoS https://bugzilla.redhat.com/show_bug.cgi?id=2268639

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-ec22e51ec2' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity

critical

Lowest

Low

Medium

High

Critical

Name: nghttp2

Product: Fedora 38

Version: 1.52.0

Release: 3.fc38

URL: https://nghttp2.org/

Summary: Experimental HTTP/2 client, server and proxy

Topics Covered

security advisory Fedora DoS attack fix nghttp2

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Fedora 38: FEDORA-2024-ec22e51ec2 Critical: nghttp2 Denial of Service

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Fedora 38: FEDORA-2024-ec22e51ec2 Critical: nghttp2 Denial of Service

Summary

Topics Covered

Change Log

References

Update Instructions

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!