2 matches found
Advisory ROSA-SA-2026-3177
Software: nghttp2 1.57.0 OS: ROSA Virtualization 3.0 unaffected versions = nghttp2-1.57.0-2.0.2.rv30 affected versions nghttp2-1.57.0-2.0.2.rv30 CVE-ID: CVE-2024-28182 BDU-ID: 2024-02691 CVE-Crit: MEDIUM. CVE-DESC.: A vulnerability in the nghttp2 library as part of the HTTP/2 protocol...
Slackware Linux 15.0 / current nghttp2 Vulnerability (SSA:2023-284-02)
The version of nghttp2 installed on the remote host is prior to 1.57.0. It is, therefore, affected by a vulnerability as referenced in the SSA:2023-284-02 advisory. - The HTTP/2 protocol allows a denial of service server resource consumption because request cancellation can reset many streams...