Alerts This Week
Warning Icon 1 401
Alerts This Week
Warning Icon 1 401

Oracle Linux 10 ELSA-2026-7666 nghttp2 Important Denial of Service

oracle
Calendar Grey April 13, 2026
Oracle Linux Logo Esm H88
Updated rpms for Oracle Linux 10 address important issues, including denial of service related to nghttp2. Essential for administrators.
The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:

Summary

[1.64.0-2.1] - fix Denial of service: Assertion failure due to the missing state validation (CVE-2026-27135)

SRPMs

http://oss.oracle.com/ol10/SRPMS-updates/nghttp2-1.64.0-2.el10_1.1.src.rpm

x86_64

libnghttp2-1.64.0-2.el10_1.1.x86_64.rpm libnghttp2-devel-1.64.0-2.el10_1.1.x86_64.rpm nghttp2-1.64.0-2.el10_1.1.x86_64.rpm

aarch64

libnghttp2-1.64.0-2.el10_1.1.aarch64.rpm libnghttp2-devel-1.64.0-2.el10_1.1.aarch64.rpm nghttp2-1.64.0-2.el10_1.1.aarch64.rpm

Severity
important
Lowest
Low
Medium
High
Critical

Related CVEs: CVE-2026-27135

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here