ALSA-2024:3501

[ALSA-2024:3501] Moderate: nghttp2 security update

Type:

security

Severity:

moderate

Release date:

2024-05-30

Description:

libnghttp2 is a library implementing the Hypertext Transfer Protocol version 2 (HTTP/2) protocol in C.

Security Fix(es):

* nghttp2: CONTINUATION frames DoS (CVE-2024-28182)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	libnghttp2-devel-1.43.0-5.el9_4.3.aarch64.rpm	0083f6b4d4c6ed52bc73e14c7ba256443401388579ab9b0cc8fa1ddff64049e0
aarch64	libnghttp2-1.43.0-5.el9_4.3.aarch64.rpm	3ca712a5bdfa6dbd8ba521ac41998f3ed3a53b82d2d30fcadfce56f51a556c61
aarch64	nghttp2-1.43.0-5.el9_4.3.aarch64.rpm	59e880af00d5249048bd2841f7216f25078d1c1721803db8a03c82a0f08d871c
i686	libnghttp2-1.43.0-5.el9_4.3.i686.rpm	0cd9d328ade0313c1eda3aeefa19f47d9a898d1964f95f411789573c4bcc6368
i686	libnghttp2-devel-1.43.0-5.el9_4.3.i686.rpm	78bc22b3742a83a9ad9bce69b79b83f2d33eee1ac2f99869abcdc6fb0ecc4404
ppc64le	nghttp2-1.43.0-5.el9_4.3.ppc64le.rpm	3db581e93caa635a693eec05f08da4a9fba4887d5f2fb3f8e6de0added17a778
ppc64le	libnghttp2-1.43.0-5.el9_4.3.ppc64le.rpm	69f6d0154058a690398dfc610238e51f380b289f0c186e756e1b40a8b6fc8637
ppc64le	libnghttp2-devel-1.43.0-5.el9_4.3.ppc64le.rpm	c6b0d3ead16f9f890297f79bfc740b00378d9cf665fc52a0bb7ce81c58d018fa
s390x	nghttp2-1.43.0-5.el9_4.3.s390x.rpm	19cfd3cc6191ab58c8b9f92551a8b873ff10f25d15c1340da397b5bba8eb4788
s390x	libnghttp2-1.43.0-5.el9_4.3.s390x.rpm	6e5defc90e84296fb91d0803f53036b254869ca579185c146cb839ddaef377be
s390x	libnghttp2-devel-1.43.0-5.el9_4.3.s390x.rpm	7b0730f815e8caf56e4bdefa91bac9ad33045154ada94229120759ed08b50a8d
x86_64	libnghttp2-1.43.0-5.el9_4.3.x86_64.rpm	6ed96231e1ec061486e746d27ff76615c098eaac1f7aeb100e50df7f5a1b8a96
x86_64	nghttp2-1.43.0-5.el9_4.3.x86_64.rpm	ca448ce4b472d60167d61631d8ed1ef9d939053cd2b0ac7b80e039c7d95efd05
x86_64	libnghttp2-devel-1.43.0-5.el9_4.3.x86_64.rpm	f8c8486c4db8d81f78b99c08ea5386b8e25967c6b556331e966e84fefb07dcf5

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.