Chapter 4. Resolved issues

The following are non-security issues resolved during this release:

Issue	Description
JBCS-806	CVE-2019-9513 nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption [jbcs-httpd-2.4.29-sp2-native]
JBCS-820	CVE-2019-9511 nghttp2: HTTP/2: large amount of data request leads to denial of service [jbcs-httpd-2.4.29-sp2-native]
JBCS-822	CVE-2019-9517 mod_http2: HTTP/2: request for large response leads to denial of service [jbcs-httpd-2.4.29-sp2-native]
JBCS-824	CVE-2019-9516 mod_http2: HTTP/2: 0-length headers leads to denial of service [jbcs-httpd-2.4.29-sp2-native]
JBCS-828	Rebase nghttp2 to 1.39.2

Select Your Language