Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 519
Alerts This Week
Warning Icon 1 519

Fedora 39: FEDORA-2024-a00de83de9 Critical: nghttp2 DoS Issue

fedora
Calendar Grey April 20, 2024
Dist Fedora Esm H88
Fedora System Alert regarding nghttp2 resolves CONTINUATION frame DoS vulnerability. Discover further insights on the resolution and update specifics.
fix CONTINUATION frames DoS (CVE-2024-28182)

Summary

This package contains the HTTP/2 client, server and proxy programs.

Update Information:

fix CONTINUATION frames DoS (CVE-2024-28182)

Change Log

* Thu Apr 4 2024 Jan Macku - 1.55.1-5 - fix CONTINUATION frames DoS (CVE-2024-28182)

References


[ 1 ] Bug #2268639 - CVE-2024-28182 nghttp2: CONTINUATION frames DoS https://bugzilla.redhat.com/show_bug.cgi?id=2268639

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-a00de83de9' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: nghttp2
Product: Fedora 39
Version: 1.55.1
Release: 5.fc39
Summary: Experimental HTTP/2 client, server and proxy

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.