Updated nghttp2 packages fix security vulnerability
Publication date: 01 Apr 2020Modification date: 01 Apr 2020
Type: security
Affected Mageia releases : 7
CVE: CVE-2019-18802
Description
Malformed request header may cause route matchers or access controls to be
bypassed, resulting in escalation of privileges or information disclosure
(CVE-2019-18802).
References
SRPMS
7/core
- nghttp2-1.38.0-1.2.mga7