2 matches found
Amazon Linux 2 : mod_http2, --advisory ALAS2-2026-3372 (ALAS-2026-3372)
The version of modhttp2 installed on the remote host is prior to 2.0.42-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2026-3372 advisory. Denial of service in HTTP/2 cookie request header counting CVE-2026-49975 Tenable has extracted the preceding description block...
Important: mod_http2 security update
The modh2 Apache httpd module implements the HTTP2 protocol h2+h2c on top of libnghttp2 for httpd 2.4 servers. Security Fixes: httpd: HTTP/2: Remote Denial of Service via compression bomb and Slowloris-style attack CVE-2026-49975 For more details about the security issues, including the impact, a...