nghttp2 1.40.0-1ubuntu0.3 source package in Ubuntu
Changelog
nghttp2 (1.40.0-1ubuntu0.3) focal-security; urgency=medium
* SECURITY UPDATE: HTTP/2 protocol denial of service
- debian/patches/CVE-2024-28182-1.patch: Add
nghttp2_option_set_max_continuations
- debian/patches/CVE-2024-28182-2.patch: Limit CONTINUATION frames
following an incoming HEADER frame
- CVE-2024-28182
-- Fabian Toepfer <email address hidden> Thu, 18 Apr 2024 09:15:36 +0200
Upload details
- Uploaded by:
- Fabian Toepfer
- Uploaded to:
- Focal
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- httpd
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Focal | updates | main | misc | |
| Focal | security | main | misc |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| nghttp2_1.40.0.orig.tar.bz2 | 1.8 MiB | 82758e13727945f2408d0612762e4655180b039f058d5ff40d055fa1497bd94f |
| nghttp2_1.40.0-1ubuntu0.3.debian.tar.xz | 21.6 KiB | e12fe7cb64f43ea9682c702b86bb693851ed0846cde02b1f542ccc63d156b3d1 |
| nghttp2_1.40.0-1ubuntu0.3.dsc | 2.6 KiB | 81d3d6d55d1f26f55814de98265d50dc20e93af668dd95c1a9739b9b9502aed7 |
Available diffs
Binary packages built by this source
- libnghttp2-14: library implementing HTTP/2 protocol (shared library)
This is an implementation of the Hypertext Transfer Protocol version
2 in C. The framing layer of HTTP/2 is implemented as a reusable C
library.
.
This package installs a shared library.
- libnghttp2-14-dbgsym: debug symbols for libnghttp2-14
- libnghttp2-dev: library implementing HTTP/2 protocol (development files)
This is an implementation of the Hypertext Transfer Protocol version
2 in C. The framing layer of HTTP/2 is implemented as a reusable C
library.
.
This package installs development files.
- libnghttp2-doc: library implementing HTTP/2 protocol (documentation)
This is an implementation of the Hypertext Transfer Protocol version
2 in C. The framing layer of HTTP/2 is implemented as a reusable C
library.
.
This package installs documentation.
- nghttp2: server, proxy and client implementing HTTP/2
This package will install a set of programs implementing the HTTP/2
protocol: a standalone server (nghttp2-server), a reverse proxy
(nghttp2-proxy) and a client (nghttp2-client). It provides no files
on its own and is not necessary for these programs to work.
- nghttp2-client: client implementing HTTP/2 protocol
This is a command line client implementing the HTTP/2 protocol. It
gives access to many low-level and advanced aspects of the protocol
and therefore is useful for debugging.
- nghttp2-client-dbgsym: debug symbols for nghttp2-client
- nghttp2-proxy: reverse proxy implementing HTTP/2 protocol
This is a standalone server implementing the HTTP/2 protocol with
HTTP/1.1 fallback for clients that do not support it. It can be used
as a frontend in front of web servers that do not support HTTP/2.
- nghttp2-proxy-dbgsym: debug symbols for nghttp2-proxy
- nghttp2-server: server implementing HTTP/2 protocol
This is a standalone server implementing the HTTP/2 protocol with
HTTP/1.1 fallback for clients that do not support it. It can be used
to serve files from a local directory.
- nghttp2-server-dbgsym: debug symbols for nghttp2-server
