Lucene search

Basic search
Lucene search
Search by product

Vendors

Products

FedoraFEDORA:7930060A7CB6

HistoryAug 30, 2019 - 12:51 a.m.

[SECURITY] Fedora 29 Update: mod_http2-1.15.3-2.fc29

2019-08-3000:51:34

lists.fedoraproject.org

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

JSON

The mod_h2 Apache httpd module implements the HTTP2 protocol (h2+h2c) on top of libnghttp2 for httpd 2.4 servers.

OSVersionArchitecturePackageVersionFilename
Fedora29anymod_http2< 1.15.3UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Fedora	29	any	mod_http2	< 1.15.3	UNKNOWN

openvas 28

fedora 7

nessus 54

amazon 4

oraclelinux 3

f5 2

redhat 11

ibm 17

osv 9

archlinux 2

freebsd 3

rocky 2

mageia 1

suse 5

hackerone 1

almalinux 2

ubuntu 1

debian 1

altlinux 1

fortinet 1

cloudfoundry 1

myhack58 1

threatpost 1

nodejsblog 1

cert 1

githubexploit 1

debiancve 4

cbl_mariner 2

prion 4

symantec 2

redhatcve 4

alpinelinux 4

ubuntucve 3

cve 4

httpd 2

veracode 4

mscve 1

nginx 2

kaspersky 1

zdi 1

openvas

Fedora Update for mod_http2 FEDORA-2019-4427fd65be

2019-08-31 00:00:00

Fedora Update for mod_http2 FEDORA-2019-63ba15cc83

2019-08-31 00:00:00

Ubuntu: Security Advisory (USN-4099-1)

2019-08-16 00:00:00

fedora

[SECURITY] Fedora 30 Update: mod_http2-1.15.3-2.fc30

2019-08-30 14:21:13

[SECURITY] Fedora 30 Update: nginx-1.16.1-1.fc30

2019-08-22 01:18:25

[SECURITY] Fedora 29 Update: nodejs-10.16.3-1.fc29

2019-08-25 03:04:17

nessus

Amazon Linux 2 : mod_http2 (ALAS-2019-1342) (0-Length Headers Leak) (Data Dribble) (Internal Data Buffering)

2019-10-31 00:00:00

Fedora 29 : mod_http2 (2019-4427fd65be) (0-Length Headers Leak) (Data Dribble) (Internal Data Buffering)

2019-08-30 00:00:00

Fedora 30 : mod_http2 (2019-63ba15cc83) (0-Length Headers Leak) (Data Dribble) (Internal Data Buffering)

2019-09-03 00:00:00

amazon

Important: mod_http2

2019-10-28 17:43:00

Important: nginx

2019-09-30 21:06:00

Medium: httpd

2019-01-23 23:31:00

oraclelinux

httpd:2.4 security update

2019-09-24 00:00:00

nginx:1.14 security update

2019-09-19 00:00:00

nodejs:10 security update

2019-09-30 00:00:00

K02591030 : HTTP/2 vulnerabilities CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, and CVE-2019-9517

2019-08-20 00:00:00

K28902827 : Apache mod_http2 vulnerability CVE-2018-11763

2018-10-04 00:00:00

redhat

(RHSA-2019:2946) Important: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 SP3 security update

2019-10-01 10:18:36

(RHSA-2019:2950) Important: Red Hat JBoss Core Services Apache HTTP Server 2.4.29 SP3 security update

2019-10-01 11:44:36

(RHSA-2019:2775) Important: rh-nginx114-nginx security update

2019-09-16 12:43:00

ibm

Security Bulletin: A security vulnerability has been identified in nginx shipped with PowerAI Vision

2020-01-08 18:55:26

Security Bulletin: Multiple Security Vulnerabilities affect IBM Cloud Private Kubernetes

2019-11-23 16:58:10

Security Bulletin: Security Vulnerabilities affect Cloud Foundry for IBM Cloud Private - Node.js

2019-11-24 13:26:25

osv

Important: nginx:1.14 security update

2019-09-17 08:45:10

Important: nginx:1.14 security update

2019-09-17 08:45:10

nginx - security update

2019-08-22 00:00:00

archlinux

[ASA-201908-12] nginx-mainline: denial of service

2019-08-16 00:00:00

[ASA-201908-13] nginx: denial of service

2019-08-16 00:00:00

freebsd

NGINX -- Multiple vulnerabilities

2019-08-13 00:00:00

Node.js -- multiple vulnerabilities

2019-08-16 00:00:00

Apache -- Denial of service vulnerability in HTTP/2

2018-09-25 00:00:00

rocky

nginx:1.14 security update

2019-09-17 08:45:10

nodejs:10 security update

2019-09-30 07:07:29

mageia

Updated nginx packages fix security vulnerabilities

2019-11-30 16:06:06

suse

Security update for nginx (moderate)

2019-10-06 00:00:00

Security update for nodejs8 (important)

2019-09-11 00:00:00

Security update for nodejs10 (important)

2019-09-11 00:00:00

hackerone

Localize: Nginx version is disclosed in HTTP response

2020-01-26 21:54:31

almalinux

Important: nginx:1.14 security update

2019-09-17 08:45:10

Important: nodejs:10 security update

2019-09-30 07:07:29

ubuntu

nginx vulnerabilities

2019-08-15 00:00:00

debian

[SECURITY] [DSA 4505-1] nginx security update

2019-08-22 19:38:21

altlinux

Security fix for the ALT Linux 10 package node version 10.16.3-alt1

2019-08-30 00:00:00

fortinet

HTTP/2 Multiple DoS Attacks (VU#605641)

2019-09-03 00:00:00

cloudfoundry

Various HTTP2 CVEs: Some Cloud Foundry products are impacted by HTTP denial of service attacks | Cloud Foundry

2019-12-03 00:00:00

myhack58

HTTP/2 denial of service attack vulnerability alerts-a vulnerability alert-the black bar safety net

2019-08-14 00:00:00

threatpost

HTTP Bugs Open Websites to DoS Attacks

2019-08-15 19:20:38

nodejsblog

August 2019 Security Releases

2019-08-16 00:00:00

cert

HTTP/2 implementations do not robustly handle abnormal traffic and resource exhaustion

2019-08-13 00:00:00

githubexploit

Exploit for Uncontrolled Resource Consumption in F5 Nginx

2020-12-22 10:16:11

debiancve

CVE-2019-9517

2019-08-13 21:15:00

CVE-2019-9511

2019-08-13 21:15:00

CVE-2019-9516

2019-08-13 21:15:00

cbl_mariner

CVE-2019-9511 affecting package nginx 1.16.1-2

2021-06-14 15:32:58

CVE-2019-9516 affecting package nginx 1.16.1-2

2021-06-14 15:32:58

prion

Design/Logic Flaw

2019-08-13 21:15:00

Code injection

2019-08-13 21:15:00

Code injection

2019-08-13 21:15:00

symantec

HTTP/2 CVE-2019-9517 Remote Denial of Service Vulnerability

2019-08-13 00:00:00

Microsoft Windows 'HTTP.sys' CVE-2019-9511 Denial of Service Vulnerability

2019-08-13 00:00:00

redhatcve

CVE-2019-9511

2020-11-01 17:54:29

CVE-2019-9516

2019-10-29 09:51:47

CVE-2019-9517

2021-03-21 00:51:26

alpinelinux

CVE-2019-9511

2019-08-13 21:15:00

CVE-2019-9517

2019-08-13 21:15:00

CVE-2019-9516

2019-08-13 21:15:00

ubuntucve

CVE-2019-9516

2019-08-13 00:00:00

CVE-2019-9511

2019-08-13 00:00:00

CVE-2019-9517

2019-08-13 00:00:00

cve

CVE-2019-9516

2019-08-13 21:15:00

CVE-2019-9511

2019-08-13 21:15:00

CVE-2019-9517

2019-08-13 21:15:00

httpd

Apache Httpd < 2.4.41 : mod_http2, DoS attack by exhausting h2 workers.

2019-04-10 00:00:00

Apache Httpd < 2.4.35 : DoS for HTTP/2 connections by continuous SETTINGS

2018-07-18 00:00:00

veracode

Denial Of Service (DoS)

2019-09-13 00:40:24

Denial Of Service (DoS)

2019-09-13 00:40:24

Denial Of Service (DoS)

2019-10-01 00:17:28

mscve

HTTP/2 Server Denial of Service Vulnerability

2019-08-13 07:00:00

nginx

Excessive CPU usage in HTTP/2 with small window updates

2019-08-13 21:15:00

Excessive memory usage in HTTP/2 with zero length headers

2019-08-13 21:15:00

kaspersky

KLA12363 DoS vulnerability in Apache HTTP Server

2021-09-29 00:00:00

zdi

Apache2 mod_http2 header Denial of Service Vulnerability

2018-12-10 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

JSON

Related for FEDORA:7930060A7CB6