Описание
Security update for nghttp2
This update for nghttp2 fixes the following issues:
- CVE-2020-11080: HTTP/2 Large Settings Frame DoS (bsc#1181358)
This update was imported from the SUSE:SLE-15:Update update project.
Список пакетов
openSUSE Leap 15.2
libnghttp2-14-1.40.0-lp152.2.6.1
libnghttp2-14-32bit-1.40.0-lp152.2.6.1
libnghttp2-devel-1.40.0-lp152.2.6.1
libnghttp2_asio-devel-1.40.0-lp152.2.6.1
libnghttp2_asio1-1.40.0-lp152.2.6.1
libnghttp2_asio1-32bit-1.40.0-lp152.2.6.1
nghttp2-1.40.0-lp152.2.6.1
python3-nghttp2-1.40.0-lp152.2.6.1
Ссылки
- E-Mail link for openSUSE-SU-2021:0468-1
- SUSE Security Ratings
- SUSE Bug 1172442
- SUSE Bug 1181358
- SUSE CVE CVE-2020-11080 page
Описание
In nghttp2 before version 1.41.0, the overly large HTTP/2 SETTINGS frame payload causes denial of service. The proof of concept attack involves a malicious client constructing a SETTINGS frame with a length of 14,400 bytes (2400 individual settings entries) over and over again. The attack causes the CPU to spike at 100%. nghttp2 v1.41.0 fixes this vulnerability. There is a workaround to this vulnerability. Implement nghttp2_on_frame_recv_callback callback, and if received frame is SETTINGS frame and the number of settings entries are large (e.g., > 32), then drop the connection.
Затронутые продукты
openSUSE Leap 15.2:libnghttp2-14-1.40.0-lp152.2.6.1
openSUSE Leap 15.2:libnghttp2-14-32bit-1.40.0-lp152.2.6.1
openSUSE Leap 15.2:libnghttp2-devel-1.40.0-lp152.2.6.1
openSUSE Leap 15.2:libnghttp2_asio-devel-1.40.0-lp152.2.6.1
Ссылки
- CVE-2020-11080
- SUSE Bug 1172441
- SUSE Bug 1172442
- SUSE Bug 1181358