-
Language:
English
-
Language:
English
Chapter 4. Resolved issues
The following are non-security issues resolved during this release:
Issue | Description |
---|---|
JBCS-806 | CVE-2019-9513 nghttp2: HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption [jbcs-httpd-2.4.29-sp2-native] |
JBCS-820 | CVE-2019-9511 nghttp2: HTTP/2: large amount of data request leads to denial of service [jbcs-httpd-2.4.29-sp2-native] |
JBCS-822 | CVE-2019-9517 mod_http2: HTTP/2: request for large response leads to denial of service [jbcs-httpd-2.4.29-sp2-native] |
JBCS-824 | CVE-2019-9516 mod_http2: HTTP/2: 0-length headers leads to denial of service [jbcs-httpd-2.4.29-sp2-native] |
JBCS-828 | Rebase nghttp2 to 1.39.2 |