CVE-2016-1544

Опубликовано: 06 фев. 2020

Источник: debian

Описание

nghttp2 before 1.7.1 allows remote attackers to cause a denial of service (memory exhaustion).

Пакет	Статус	Версия исправления	Релиз	Тип
nghttp2	fixed	1.7.1-1		package
nghttp2	no-dsa		jessie	package

Fix spread across multiple commits: https://github.com/tatsuhiro-t/nghttp2/compare/v1.7.0...v1.7.1
Commits between 1.7.0 and 1.7.1 seem almost limited to this issue, cf.
https://bugzilla.redhat.com/show_bug.cgi?id=1308461#c3

CVE-2016-1544

CVSS3: 3.3

ubuntu

около 6 лет назад

nghttp2 before 1.7.1 allows remote attackers to cause a denial of service (memory exhaustion).

CVE-2016-1544

redhat

почти 10 лет назад

nghttp2 before 1.7.1 allows remote attackers to cause a denial of service (memory exhaustion).

CVE-2016-1544

CVSS3: 3.3

nvd

около 6 лет назад

nghttp2 before 1.7.1 allows remote attackers to cause a denial of service (memory exhaustion).

openSUSE-SU-2016:0675-1

suse-cvrf

почти 10 лет назад

Security update for nghttp2

GHSA-32wx-5655-89rw

github

больше 3 лет назад

nghttp2 before 1.7.1 allows remote attackers to cause a denial of service (memory exhaustion).