Chapter 3. Security Fixes

This update includes fixes for the following security related issues:

IDImpactSummary

CVE-2019-9511

Important

HTTP/2: large amount of data requests leads to denial of service

CVE-2019-9513

Important

HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption

CVE-2019-9516

Important

HTTP/2: 0-length headers lead to denial of service

CVE-2019-9517

Important

HTTP/2: request for large response leads to denial of service