Download
| Alert*
nghttp2: Multiple Vulnerabilities (CVE-2019-9511, CVE-2019-9513)
Affected versions: nghttp2 version < 1.39.2The attacker creates multiple request streams and continually shuffles the priority of the streams in a way that causes substantial churn to the priority tree. This can consume excess CPU, potentially leading to a denial of service.
|