ID CVE-2019-9513
Summary Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service. The attacker creates multiple request streams and continually shuffles the priority of the streams in a way that causes substantial churn to the priority tree. This can consume excess CPU.
References
Vulnerable Configurations
  • cpe:2.3:a:apple:swiftnio:1.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:apple:swiftnio:1.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:swiftnio:1.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:apple:swiftnio:1.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:swiftnio:1.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:apple:swiftnio:1.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:swiftnio:1.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:apple:swiftnio:1.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:swiftnio:1.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:apple:swiftnio:1.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:swiftnio:1.2.1:*:*:*:*:*:*:*
    cpe:2.3:a:apple:swiftnio:1.2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:swiftnio:1.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:apple:swiftnio:1.2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:swiftnio:1.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:apple:swiftnio:1.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:swiftnio:1.3.1:*:*:*:*:*:*:*
    cpe:2.3:a:apple:swiftnio:1.3.1:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:swiftnio:1.3.2:*:*:*:*:*:*:*
    cpe:2.3:a:apple:swiftnio:1.3.2:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:swiftnio:1.4.0:*:*:*:*:*:*:*
    cpe:2.3:a:apple:swiftnio:1.4.0:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:6.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:6.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:6.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:6.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:6.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:6.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:6.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:6.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:6.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:6.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:6.2.1:*:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:6.2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:6.2.1:rc0:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:6.2.1:rc0:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:6.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:6.2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:6.2.2:rc0:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:6.2.2:rc0:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:6.2.3:*:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:6.2.3:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:7.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:7.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:7.0.0:rc0:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:7.0.0:rc0:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:7.0.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:7.0.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:7.0.0:rc2:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:7.0.0:rc2:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:7.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:7.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:7.1.0:rc0:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:7.1.0:rc0:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:7.1.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:7.1.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:7.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:7.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:7.1.1:rc0:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:7.1.1:rc0:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:7.1.1:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:7.1.1:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:7.1.2:*:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:7.1.2:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:7.1.2:rc0:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:7.1.2:rc0:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:7.1.2:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:7.1.2:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:7.1.2:rc2:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:7.1.2:rc2:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:7.1.2:rc3:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:7.1.2:rc3:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:7.1.2:rc4:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:7.1.2:rc4:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:7.1.3:*:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:7.1.3:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:7.1.3:rc0:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:7.1.3:rc0:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:7.1.4:*:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:7.1.4:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:7.1.4:rc0:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:7.1.4:rc0:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:7.1.4:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:7.1.4:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:7.1.5:*:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:7.1.5:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:7.1.6:*:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:7.1.6:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:8.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:8.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:8.0.0:-:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:8.0.0:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:8.0.0:rc0:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:8.0.0:rc0:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:8.0.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:8.0.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:8.0.0:rc2:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:8.0.0:rc2:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:8.0.0:rc3:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:8.0.0:rc3:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:8.0.0:rc4:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:8.0.0:rc4:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:8.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:8.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:8.0.1:-:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:8.0.1:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:8.0.1:rc0:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:8.0.1:rc0:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:8.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:8.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:8.0.2:-:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:8.0.2:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:8.0.2:rc0:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:8.0.2:rc0:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:8.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:8.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:8.0.3:-:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:8.0.3:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:traffic_server:8.0.3:rc0:*:*:*:*:*:*
    cpe:2.3:a:apache:traffic_server:8.0.3:rc0:*:*:*:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*
  • cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
    cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
  • cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
    cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
    cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
  • cpe:2.3:a:synology:diskstation_manager:6.2:*:*:*:*:*:*:*
    cpe:2.3:a:synology:diskstation_manager:6.2:*:*:*:*:*:*:*
  • cpe:2.3:a:synology:skynas:-:*:*:*:*:*:*:*
    cpe:2.3:a:synology:skynas:-:*:*:*:*:*:*:*
  • cpe:2.3:o:synology:vs960hd_firmware:-:*:*:*:*:*:*:*
    cpe:2.3:o:synology:vs960hd_firmware:-:*:*:*:*:*:*:*
  • cpe:2.3:h:synology:vs960hd:-:*:*:*:*:*:*:*
    cpe:2.3:h:synology:vs960hd:-:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
    cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
  • cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*
    cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*
  • cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
    cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:jboss_core_services:1.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:jboss_core_services:1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:openshift_service_mesh:1.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:openshift_service_mesh:1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:quay:3.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:quay:3.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:redhat:software_collections:1.0:*:*:*:*:*:*:*
    cpe:2.3:a:redhat:software_collections:1.0:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:graalvm:19.2.0:*:*:*:enterprise:*:*:*
    cpe:2.3:a:oracle:graalvm:19.2.0:*:*:*:enterprise:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.7.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.7.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.7.2.1:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.7.2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.7.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.7.2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.7.2.3:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.7.2.3:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.7.2.4:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.7.2.4:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.7.2.5:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.7.2.5:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.7.2.6:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.7.2.6:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.7.2.7:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.7.2.7:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.7.2.8:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.7.2.8:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.7.2.9:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.7.2.9:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.7.2.10:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.7.2.10:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.7.2.11:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.7.2.11:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.7.2.12:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.7.2.12:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.7.2.13:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.7.2.13:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.7.2.14:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.7.2.14:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.7.2.15:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.7.2.15:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.7.2.16:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.7.2.16:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.7.2.17:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.7.2.17:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.7.2.18:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.7.2.18:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.7.2.19:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.7.2.19:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.7.2.20:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.7.2.20:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.7.2.21:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.7.2.21:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.7.2.22:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.7.2.22:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.7.2.23:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.7.2.23:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.8.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.8.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.8.2.1:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.8.2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.8.2.2:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.8.2.2:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.8.2.3:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.8.2.3:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.8.2.4:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.8.2.4:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.8.2.5:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.8.2.5:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.8.2.6:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.8.2.6:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.8.2.7:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.8.2.7:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.8.2.8:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.8.2.8:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.8.2.9:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.8.2.9:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.8.2.10:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.8.2.10:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.8.2.11:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.8.2.11:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:7.8.2.12:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:7.8.2.12:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:8.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:8.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:8.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:8.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:8.1.2:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:8.1.2:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:8.1.3:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:8.1.3:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:8.1.4:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:8.1.4:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:web_gateway:8.1.5:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:web_gateway:8.1.5:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.9.5:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.9.5:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.9.6:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.9.6:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.9.7:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.9.7:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.9.8:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.9.8:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.9.9:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.9.9:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.9.10:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.9.10:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.9.11:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.9.11:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.9.12:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.9.12:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.9.13:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.9.13:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.9.14:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.9.14:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.9.15:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.9.15:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.10.0:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.10.0:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.10.1:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.10.1:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.10.2:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.10.2:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.10.3:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.10.3:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.11.0:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.11.0:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.11.1:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.11.1:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.11.2:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.11.2:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.11.3:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.11.3:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.11.4:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.11.4:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.11.5:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.11.5:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.11.6:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.11.6:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.11.7:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.11.7:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.11.8:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.11.8:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.11.9:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.11.9:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.11.10:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.11.10:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.11.11:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.11.11:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.11.12:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.11.12:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.11.13:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.11.13:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.12.0:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.12.0:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.12.1:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.12.1:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.12.2:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.12.2:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.13.0:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.13.0:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.13.1:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.13.1:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.13.2:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.13.2:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.13.3:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.13.3:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.13.4:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.13.4:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.13.5:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.13.5:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.13.6:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.13.6:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.13.7:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.13.7:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.13.8:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.13.8:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.13.9:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.13.9:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.13.10:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.13.10:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.13.11:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.13.11:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.13.12:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.13.12:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.14.0:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.14.0:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.14.1:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.14.1:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.14.2:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.14.2:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.15.0:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.15.0:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.15.1:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.15.1:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.15.2:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.15.2:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.15.3:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.15.3:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.15.4:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.15.4:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.15.5:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.15.5:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.15.6:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.15.6:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.15.7:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.15.7:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.15.8:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.15.8:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.15.9:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.15.9:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.15.10:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.15.10:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.15.11:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.15.11:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.15.12:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.15.12:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.16.0:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.16.0:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.17.0:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.17.0:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.17.1:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.17.1:*:*:*:*:*:*:*
  • cpe:2.3:a:nginx:nginx:1.17.2:*:*:*:*:*:*:*
    cpe:2.3:a:nginx:nginx:1.17.2:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:enterprise_communications_broker:3.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:enterprise_communications_broker:3.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:enterprise_communications_broker:3.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:enterprise_communications_broker:3.2.0:*:*:*:*:*:*:*
CVSS
Base: 7.8 (as of 30-01-2021 - 02:36)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:N/A:C
redhat via4
advisories
  • bugzilla
    id 1741860
    title CVE-2019-9511 HTTP/2: large amount of data requests leads to denial of service
    oval
    OR
    • comment Red Hat Enterprise Linux must be installed
      oval oval:com.redhat.rhba:tst:20070304026
    • AND
      • comment Red Hat Enterprise Linux 8 is installed
        oval oval:com.redhat.rhba:tst:20193384074
      • OR
        • AND
          • comment libnghttp2 is earlier than 0:1.33.0-1.el8_0.1
            oval oval:com.redhat.rhsa:tst:20192692001
          • comment libnghttp2 is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20192692002
        • AND
          • comment libnghttp2-devel is earlier than 0:1.33.0-1.el8_0.1
            oval oval:com.redhat.rhsa:tst:20192692003
          • comment libnghttp2-devel is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20192692004
        • AND
          • comment nghttp2 is earlier than 0:1.33.0-1.el8_0.1
            oval oval:com.redhat.rhsa:tst:20192692005
          • comment nghttp2 is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20192692006
        • AND
          • comment nghttp2-debugsource is earlier than 0:1.33.0-1.el8_0.1
            oval oval:com.redhat.rhsa:tst:20192692007
          • comment nghttp2-debugsource is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20192692008
    rhsa
    id RHSA-2019:2692
    released 2019-09-09
    severity Important
    title RHSA-2019:2692: nghttp2 security update (Important)
  • rhsa
    id RHSA-2019:2745
  • rhsa
    id RHSA-2019:2746
  • rhsa
    id RHSA-2019:2775
  • rhsa
    id RHSA-2019:2799
  • rhsa
    id RHSA-2019:2925
  • rhsa
    id RHSA-2019:2939
  • rhsa
    id RHSA-2019:2949
  • rhsa
    id RHSA-2019:2955
  • rhsa
    id RHSA-2019:2966
  • rhsa
    id RHSA-2019:3041
  • rhsa
    id RHSA-2019:3932
  • rhsa
    id RHSA-2019:3933
  • rhsa
    id RHSA-2019:3935
rpms
  • libnghttp2-0:1.33.0-1.el8_0.1
  • libnghttp2-debuginfo-0:1.33.0-1.el8_0.1
  • libnghttp2-devel-0:1.33.0-1.el8_0.1
  • nghttp2-0:1.33.0-1.el8_0.1
  • nghttp2-debuginfo-0:1.33.0-1.el8_0.1
  • nghttp2-debugsource-0:1.33.0-1.el8_0.1
  • rh-nginx110-nginx-1:1.10.2-9.el6.1
  • rh-nginx110-nginx-1:1.10.2-9.el7.1
  • rh-nginx110-nginx-debuginfo-1:1.10.2-9.el6.1
  • rh-nginx110-nginx-debuginfo-1:1.10.2-9.el7.1
  • rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-9.el6.1
  • rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-9.el7.1
  • rh-nginx110-nginx-mod-http-perl-1:1.10.2-9.el6.1
  • rh-nginx110-nginx-mod-http-perl-1:1.10.2-9.el7.1
  • rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-9.el6.1
  • rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-9.el7.1
  • rh-nginx110-nginx-mod-mail-1:1.10.2-9.el6.1
  • rh-nginx110-nginx-mod-mail-1:1.10.2-9.el7.1
  • rh-nginx110-nginx-mod-stream-1:1.10.2-9.el6.1
  • rh-nginx110-nginx-mod-stream-1:1.10.2-9.el7.1
  • rh-nginx112-nginx-1:1.12.1-3.el7.1
  • rh-nginx112-nginx-debuginfo-1:1.12.1-3.el7.1
  • rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-3.el7.1
  • rh-nginx112-nginx-mod-http-perl-1:1.12.1-3.el7.1
  • rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-3.el7.1
  • rh-nginx112-nginx-mod-mail-1:1.12.1-3.el7.1
  • rh-nginx112-nginx-mod-stream-1:1.12.1-3.el7.1
  • rh-nginx114-nginx-1:1.14.1-1.el7.1
  • rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.1
  • rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.1
  • rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.1
  • rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.1
  • rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.1
  • rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.1
  • nginx-1:1.14.1-9.module+el8.0.0+4108+af250afe
  • nginx-all-modules-1:1.14.1-9.module+el8.0.0+4108+af250afe
  • nginx-debuginfo-1:1.14.1-9.module+el8.0.0+4108+af250afe
  • nginx-debugsource-1:1.14.1-9.module+el8.0.0+4108+af250afe
  • nginx-filesystem-1:1.14.1-9.module+el8.0.0+4108+af250afe
  • nginx-mod-http-image-filter-1:1.14.1-9.module+el8.0.0+4108+af250afe
  • nginx-mod-http-image-filter-debuginfo-1:1.14.1-9.module+el8.0.0+4108+af250afe
  • nginx-mod-http-perl-1:1.14.1-9.module+el8.0.0+4108+af250afe
  • nginx-mod-http-perl-debuginfo-1:1.14.1-9.module+el8.0.0+4108+af250afe
  • nginx-mod-http-xslt-filter-1:1.14.1-9.module+el8.0.0+4108+af250afe
  • nginx-mod-http-xslt-filter-debuginfo-1:1.14.1-9.module+el8.0.0+4108+af250afe
  • nginx-mod-mail-1:1.14.1-9.module+el8.0.0+4108+af250afe
  • nginx-mod-mail-debuginfo-1:1.14.1-9.module+el8.0.0+4108+af250afe
  • nginx-mod-stream-1:1.14.1-9.module+el8.0.0+4108+af250afe
  • nginx-mod-stream-debuginfo-1:1.14.1-9.module+el8.0.0+4108+af250afe
  • nodejs-1:10.16.3-2.module+el8.0.0+4214+49953fda
  • nodejs-debuginfo-1:10.16.3-2.module+el8.0.0+4214+49953fda
  • nodejs-debugsource-1:10.16.3-2.module+el8.0.0+4214+49953fda
  • nodejs-devel-1:10.16.3-2.module+el8.0.0+4214+49953fda
  • nodejs-devel-debuginfo-1:10.16.3-2.module+el8.0.0+4214+49953fda
  • nodejs-docs-1:10.16.3-2.module+el8.0.0+4214+49953fda
  • nodejs-nodemon-0:1.18.3-1.module+el8+2632+6c5111ed
  • nodejs-packaging-0:17-3.module+el8+2873+aa7dfd9a
  • npm-1:6.9.0-1.10.16.3.2.module+el8.0.0+4214+49953fda
  • rh-nodejs10-0:3.2-3.el7
  • rh-nodejs10-nodejs-0:10.16.3-3.el7
  • rh-nodejs10-nodejs-debuginfo-0:10.16.3-3.el7
  • rh-nodejs10-nodejs-devel-0:10.16.3-3.el7
  • rh-nodejs10-nodejs-docs-0:10.16.3-3.el7
  • rh-nodejs10-npm-0:6.9.0-10.16.3.3.el7
  • rh-nodejs10-runtime-0:3.2-3.el7
  • rh-nodejs10-scldevel-0:3.2-3.el7
  • jbcs-httpd24-httpd-0:2.4.29-41.jbcs.el6
  • jbcs-httpd24-httpd-0:2.4.29-41.jbcs.el7
  • jbcs-httpd24-httpd-debuginfo-0:2.4.29-41.jbcs.el6
  • jbcs-httpd24-httpd-debuginfo-0:2.4.29-41.jbcs.el7
  • jbcs-httpd24-httpd-devel-0:2.4.29-41.jbcs.el6
  • jbcs-httpd24-httpd-devel-0:2.4.29-41.jbcs.el7
  • jbcs-httpd24-httpd-manual-0:2.4.29-41.jbcs.el6
  • jbcs-httpd24-httpd-manual-0:2.4.29-41.jbcs.el7
  • jbcs-httpd24-httpd-selinux-0:2.4.29-41.jbcs.el6
  • jbcs-httpd24-httpd-selinux-0:2.4.29-41.jbcs.el7
  • jbcs-httpd24-httpd-tools-0:2.4.29-41.jbcs.el6
  • jbcs-httpd24-httpd-tools-0:2.4.29-41.jbcs.el7
  • jbcs-httpd24-mod_ldap-0:2.4.29-41.jbcs.el6
  • jbcs-httpd24-mod_ldap-0:2.4.29-41.jbcs.el7
  • jbcs-httpd24-mod_proxy_html-1:2.4.29-41.jbcs.el6
  • jbcs-httpd24-mod_proxy_html-1:2.4.29-41.jbcs.el7
  • jbcs-httpd24-mod_session-0:2.4.29-41.jbcs.el6
  • jbcs-httpd24-mod_session-0:2.4.29-41.jbcs.el7
  • jbcs-httpd24-mod_ssl-1:2.4.29-41.jbcs.el6
  • jbcs-httpd24-mod_ssl-1:2.4.29-41.jbcs.el7
  • jbcs-httpd24-nghttp2-0:1.39.2-1.jbcs.el6
  • jbcs-httpd24-nghttp2-0:1.39.2-1.jbcs.el7
  • jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-1.jbcs.el6
  • jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-1.jbcs.el7
  • jbcs-httpd24-nghttp2-devel-0:1.39.2-1.jbcs.el6
  • jbcs-httpd24-nghttp2-devel-0:1.39.2-1.jbcs.el7
  • httpd24-httpd-0:2.4.34-8.el6.1
  • httpd24-httpd-0:2.4.34-8.el7.1
  • httpd24-httpd-debuginfo-0:2.4.34-8.el6.1
  • httpd24-httpd-debuginfo-0:2.4.34-8.el7.1
  • httpd24-httpd-devel-0:2.4.34-8.el6.1
  • httpd24-httpd-devel-0:2.4.34-8.el7.1
  • httpd24-httpd-manual-0:2.4.34-8.el6.1
  • httpd24-httpd-manual-0:2.4.34-8.el7.1
  • httpd24-httpd-tools-0:2.4.34-8.el6.1
  • httpd24-httpd-tools-0:2.4.34-8.el7.1
  • httpd24-libnghttp2-0:1.7.1-7.el6.1
  • httpd24-libnghttp2-0:1.7.1-7.el7.1
  • httpd24-libnghttp2-devel-0:1.7.1-7.el6.1
  • httpd24-libnghttp2-devel-0:1.7.1-7.el7.1
  • httpd24-mod_ldap-0:2.4.34-8.el6.1
  • httpd24-mod_ldap-0:2.4.34-8.el7.1
  • httpd24-mod_md-0:2.4.34-8.el7.1
  • httpd24-mod_proxy_html-1:2.4.34-8.el6.1
  • httpd24-mod_proxy_html-1:2.4.34-8.el7.1
  • httpd24-mod_session-0:2.4.34-8.el6.1
  • httpd24-mod_session-0:2.4.34-8.el7.1
  • httpd24-mod_ssl-1:2.4.34-8.el6.1
  • httpd24-mod_ssl-1:2.4.34-8.el7.1
  • httpd24-nghttp2-0:1.7.1-7.el6.1
  • httpd24-nghttp2-0:1.7.1-7.el7.1
  • httpd24-nghttp2-debuginfo-0:1.7.1-7.el6.1
  • httpd24-nghttp2-debuginfo-0:1.7.1-7.el7.1
  • rh-nodejs8-0:3.0-5.el7
  • rh-nodejs8-nodejs-0:8.16.1-2.el7
  • rh-nodejs8-nodejs-debuginfo-0:8.16.1-2.el7
  • rh-nodejs8-nodejs-devel-0:8.16.1-2.el7
  • rh-nodejs8-nodejs-docs-0:8.16.1-2.el7
  • rh-nodejs8-npm-0:6.4.1-8.16.1.2.el7
  • rh-nodejs8-runtime-0:3.0-5.el7
  • rh-nodejs8-scldevel-0:3.0-5.el7
  • kiali-0:v1.0.6.redhat1-1.el7
  • servicemesh-0:1.0.1-8.el8
  • servicemesh-citadel-0:1.0.1-8.el8
  • servicemesh-cni-0:1.0.1-8.el8
  • servicemesh-galley-0:1.0.1-8.el8
  • servicemesh-grafana-0:6.2.2-21.el8
  • servicemesh-grafana-prometheus-0:6.2.2-21.el8
  • servicemesh-istioctl-0:1.0.1-8.el8
  • servicemesh-mixc-0:1.0.1-8.el8
  • servicemesh-mixs-0:1.0.1-8.el8
  • servicemesh-operator-0:1.0.1-8.el8
  • servicemesh-pilot-agent-0:1.0.1-8.el8
  • servicemesh-pilot-discovery-0:1.0.1-8.el8
  • servicemesh-prometheus-0:2.7.2-22.el8
  • servicemesh-proxy-0:1.0.1-7.el8
  • servicemesh-sidecar-injector-0:1.0.1-8.el8
  • jbcs-httpd24-apr-0:1.6.3-63.jbcs.el6
  • jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el6
  • jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el6
  • jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el6
  • jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el6
  • jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el6
  • jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el6
  • jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el6
  • jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el6
  • jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el6
  • jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el6
  • jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el6
  • jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el6
  • jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el6
  • jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el6
  • jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el6
  • jbcs-httpd24-curl-0:7.64.1-14.jbcs.el6
  • jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el6
  • jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el6
  • jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el6
  • jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el6
  • jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el6
  • jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el6
  • jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el6
  • jbcs-httpd24-jansson-0:2.11-20.jbcs.el6
  • jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el6
  • jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el6
  • jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el6
  • jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el6
  • jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el6
  • jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el6
  • jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el6
  • jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el6
  • jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el6
  • jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el6
  • jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el6
  • jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el6
  • jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el6
  • jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el6
  • jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el6
  • jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el6
  • jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el6
  • jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el6
  • jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el6
  • jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el6
  • jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el6
  • jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el6
  • jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el6
  • jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el6
  • jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el6
  • jbcs-httpd24-apr-0:1.6.3-63.jbcs.el7
  • jbcs-httpd24-apr-debuginfo-0:1.6.3-63.jbcs.el7
  • jbcs-httpd24-apr-devel-0:1.6.3-63.jbcs.el7
  • jbcs-httpd24-apr-util-0:1.6.1-48.jbcs.el7
  • jbcs-httpd24-apr-util-debuginfo-0:1.6.1-48.jbcs.el7
  • jbcs-httpd24-apr-util-devel-0:1.6.1-48.jbcs.el7
  • jbcs-httpd24-apr-util-ldap-0:1.6.1-48.jbcs.el7
  • jbcs-httpd24-apr-util-mysql-0:1.6.1-48.jbcs.el7
  • jbcs-httpd24-apr-util-nss-0:1.6.1-48.jbcs.el7
  • jbcs-httpd24-apr-util-odbc-0:1.6.1-48.jbcs.el7
  • jbcs-httpd24-apr-util-openssl-0:1.6.1-48.jbcs.el7
  • jbcs-httpd24-apr-util-pgsql-0:1.6.1-48.jbcs.el7
  • jbcs-httpd24-apr-util-sqlite-0:1.6.1-48.jbcs.el7
  • jbcs-httpd24-brotli-0:1.0.6-7.jbcs.el7
  • jbcs-httpd24-brotli-debuginfo-0:1.0.6-7.jbcs.el7
  • jbcs-httpd24-brotli-devel-0:1.0.6-7.jbcs.el7
  • jbcs-httpd24-curl-0:7.64.1-14.jbcs.el7
  • jbcs-httpd24-curl-debuginfo-0:7.64.1-14.jbcs.el7
  • jbcs-httpd24-httpd-0:2.4.37-33.jbcs.el7
  • jbcs-httpd24-httpd-debuginfo-0:2.4.37-33.jbcs.el7
  • jbcs-httpd24-httpd-devel-0:2.4.37-33.jbcs.el7
  • jbcs-httpd24-httpd-manual-0:2.4.37-33.jbcs.el7
  • jbcs-httpd24-httpd-selinux-0:2.4.37-33.jbcs.el7
  • jbcs-httpd24-httpd-tools-0:2.4.37-33.jbcs.el7
  • jbcs-httpd24-jansson-0:2.11-20.jbcs.el7
  • jbcs-httpd24-jansson-debuginfo-0:2.11-20.jbcs.el7
  • jbcs-httpd24-jansson-devel-0:2.11-20.jbcs.el7
  • jbcs-httpd24-libcurl-0:7.64.1-14.jbcs.el7
  • jbcs-httpd24-libcurl-devel-0:7.64.1-14.jbcs.el7
  • jbcs-httpd24-mod_cluster-native-0:1.3.12-9.Final_redhat_2.jbcs.el7
  • jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.12-9.Final_redhat_2.jbcs.el7
  • jbcs-httpd24-mod_jk-ap24-0:1.2.46-22.redhat_1.jbcs.el7
  • jbcs-httpd24-mod_jk-debuginfo-0:1.2.46-22.redhat_1.jbcs.el7
  • jbcs-httpd24-mod_jk-manual-0:1.2.46-22.redhat_1.jbcs.el7
  • jbcs-httpd24-mod_ldap-0:2.4.37-33.jbcs.el7
  • jbcs-httpd24-mod_md-0:2.4.37-33.jbcs.el7
  • jbcs-httpd24-mod_proxy_html-1:2.4.37-33.jbcs.el7
  • jbcs-httpd24-mod_security-0:2.9.2-16.GA.jbcs.el7
  • jbcs-httpd24-mod_security-debuginfo-0:2.9.2-16.GA.jbcs.el7
  • jbcs-httpd24-mod_session-0:2.4.37-33.jbcs.el7
  • jbcs-httpd24-mod_ssl-1:2.4.37-33.jbcs.el7
  • jbcs-httpd24-nghttp2-0:1.39.2-4.jbcs.el7
  • jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-4.jbcs.el7
  • jbcs-httpd24-nghttp2-devel-0:1.39.2-4.jbcs.el7
  • jbcs-httpd24-openssl-1:1.1.1-25.jbcs.el7
  • jbcs-httpd24-openssl-debuginfo-1:1.1.1-25.jbcs.el7
  • jbcs-httpd24-openssl-devel-1:1.1.1-25.jbcs.el7
  • jbcs-httpd24-openssl-libs-1:1.1.1-25.jbcs.el7
  • jbcs-httpd24-openssl-perl-1:1.1.1-25.jbcs.el7
  • jbcs-httpd24-openssl-static-1:1.1.1-25.jbcs.el7
refmap via4
bugtraq
  • 20190822 [SECURITY] [DSA 4505-1] nginx security update
  • 20190902 [SECURITY] [DSA 4511-1] nghttp2 security update
cert-vn VU#605641
confirm
debian
  • DSA-4505
  • DSA-4511
  • DSA-4669
fedora
  • FEDORA-2019-5a6a7bc12c
  • FEDORA-2019-6a2980de56
  • FEDORA-2019-7a0b45fdc4
  • FEDORA-2019-81985a8858
  • FEDORA-2019-8a437d5c2f
  • FEDORA-2019-befd924cfe
misc
suse
  • openSUSE-SU-2019:2114
  • openSUSE-SU-2019:2115
  • openSUSE-SU-2019:2120
  • openSUSE-SU-2019:2232
  • openSUSE-SU-2019:2234
  • openSUSE-SU-2019:2264
ubuntu USN-4099-1
Last major update 30-01-2021 - 02:36
Published 13-08-2019 - 21:15
Last modified 30-01-2021 - 02:36
Back to Top