Lucene search

Important: nghttp2 security update

🗓️ 07 Nov 2023 00:00:00Reported by AlmaLinuxType

almalinux🔗 errata.almalinux.org👁 78 Views

nghttp2 security update, DDoS vulnerability fi

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 200
Tenable Nessus	Atlassian Confluence 7.19.x < 7.19.16 / 8.3.x < 8.5.3 / 8.6.x < 8.6.1 (CONFSERVER-93163)	23 Nov 202300:00	–	nessus
Tenable Nessus	Rocky Linux 9 : nghttp2 (RLSA-2023:6746)	11 Nov 202300:00	–	nessus
Tenable Nessus	Oracle Linux 9 : tomcat (ELSA-2023-5929)	24 Oct 202300:00	–	nessus
Tenable Nessus	AlmaLinux 9 : varnish (ALSA-2023:5924)	21 Oct 202300:00	–	nessus
Tenable Nessus	RHEL 9 : varnish (RHSA-2023:5930)	19 Oct 202300:00	–	nessus
Tenable Nessus	RHEL 8 : tomcat (RHSA-2023:5928)	19 Oct 202300:00	–	nessus
Tenable Nessus	RHEL 8 : nghttp2 (RHSA-2023:5837)	18 Oct 202300:00	–	nessus
Tenable Nessus	Ubuntu 23.10 : .NET vulnerability (USN-6427-2)	19 Oct 202300:00	–	nessus
Tenable Nessus	Oracle Linux 9 : .NET / 7.0 (ELSA-2023-5749)	18 Oct 202300:00	–	nessus
Tenable Nessus	RHEL 8 : dotnet7.0 (RHSA-2023:5709)	16 Oct 202300:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
almalinux	9	i686	libnghttp2	1.43.0-5.el9_3.1	libnghttp2-1.43.0-5.el9_3.1.i686.rpm
almalinux	9	x86_64	libnghttp2	1.43.0-5.el9_3.1	libnghttp2-1.43.0-5.el9_3.1.x86_64.rpm
almalinux	9	s390x	libnghttp2	1.43.0-5.el9_3.1	libnghttp2-1.43.0-5.el9_3.1.s390x.rpm
almalinux	9	aarch64	libnghttp2	1.43.0-5.el9_3.1	libnghttp2-1.43.0-5.el9_3.1.aarch64.rpm
almalinux	9	ppc64le	libnghttp2	1.43.0-5.el9_3.1	libnghttp2-1.43.0-5.el9_3.1.ppc64le.rpm
almalinux	9	i686	libnghttp2-devel	1.43.0-5.el9_3.1	libnghttp2-devel-1.43.0-5.el9_3.1.i686.rpm
almalinux	9	ppc64le	libnghttp2-devel	1.43.0-5.el9_3.1	libnghttp2-devel-1.43.0-5.el9_3.1.ppc64le.rpm
almalinux	9	ppc64le	nghttp2	1.43.0-5.el9_3.1	nghttp2-1.43.0-5.el9_3.1.ppc64le.rpm
almalinux	9	s390x	nghttp2	1.43.0-5.el9_3.1	nghttp2-1.43.0-5.el9_3.1.s390x.rpm
almalinux	9	s390x	libnghttp2-devel	1.43.0-5.el9_3.1	libnghttp2-devel-1.43.0-5.el9_3.1.s390x.rpm

Source	Link
access	www.access.redhat.com/errata/RHSA-2023:6746
access	www.access.redhat.com/security/cve/CVE-2023-44487
bugzilla	www.bugzilla.redhat.com/2242803
errata	www.errata.almalinux.org/9/ALSA-2023-6746.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

07 Nov 2023 00:00Current

7.4High risk

Vulners AI Score7.4

CVSS37.5

EPSS0.94434