SUSE-SU-2019:2309-1 -- SLES nginxID: oval:org.secpod.oval:def:89050769 | Date: (C)2023-10-16 (M)2024-04-17 |
Class: PATCH | Family: unix |
This update for nginx fixes the following issues: Security issues fixed: - CVE-2019-9511: Fixed a denial of service by manipulating the window size and stream prioritization . - CVE-2019-9513: Fixed a denial of service caused by resource loops . - CVE-2019-9516: Fixed a denial of service caused by header leaks . - CVE-2018-16845: Fixed denial of service and memory disclosure via mp4 module . - CVE-2018-16843: Fixed excessive memory consumption in HTTP/2 implementation . - CVE-2018-16844: Fixed excessive CPU usage via flaw in HTTP/2 implementation .
Platform: |
SUSE Linux Enterprise Server 15 SP1 |