Описание
ELSA-2024-1872: mod_http2 security update (IMPORTANT)
[1.15.19-5.1]
- Resolves: RHEL-29826 - mod_http2: httpd: CONTINUATION frames DoS (CVE-2024-27316)
Обновленные пакеты
Oracle Linux 9
Oracle Linux aarch64
mod_http2
1.15.19-5.el9_3.1
Oracle Linux x86_64
mod_http2
1.15.19-5.el9_3.1
Связанные CVE
Связанные уязвимости
HTTP/2 incoming headers exceeding the limit are temporarily buffered in nghttp2 in order to generate an informative HTTP 413 response. If a client does not stop sending headers, this leads to memory exhaustion.
HTTP/2 incoming headers exceeding the limit are temporarily buffered in nghttp2 in order to generate an informative HTTP 413 response. If a client does not stop sending headers, this leads to memory exhaustion.
HTTP/2 incoming headers exceeding the limit are temporarily buffered in nghttp2 in order to generate an informative HTTP 413 response. If a client does not stop sending headers, this leads to memory exhaustion.
HTTP/2 incoming headers exceeding the limit are temporarily buffered i ...