ELSA-2019-2799

ULN >
Oracle Linux Errata repository >
ELSA-2019-2799

ELSA-2019-2799 - nginx:1.14 security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2019-09-19

Description

[1:1.14.1-9.0.1]
- Remove Red Hat references [Orabug: 29498217]

[1:1.14.1-9]
- Resolves: #1744811 - CVE-2019-9511 nginx:1.14/nginx: HTTP/2: large amount of
data request leads to denial of service
- Resolves: #1744325 - CVE-2019-9513 nginx:1.14/nginx: HTTP/2: flood using
PRIORITY frames resulting in excessive resource consumption
- Resolves: #1745094 - CVE-2019-9516 nginx:1.14/nginx: HTTP/2: 0-length
headers leads to denial of service

Related CVEs

CVE-2019-9511

CVE-2019-9513

CVE-2019-9516

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 8 (aarch64)	nginx-1.14.1-9.0.1.module+el8.0.0+5347+9282027e.src.rpm	6ed89c9589ee64bc869c816773d51ef4	-
	nginx-1.14.1-9.0.1.module+el8.0.0+5347+9282027e.aarch64.rpm	e3183661254c160abc75eed31465e40c	-
	nginx-all-modules-1.14.1-9.0.1.module+el8.0.0+5347+9282027e.noarch.rpm	2ca6babe2abf16e756600251157a00f3	-
	nginx-filesystem-1.14.1-9.0.1.module+el8.0.0+5347+9282027e.noarch.rpm	d1e8acb44ac614179b7524bb85455ec3	-
	nginx-mod-http-image-filter-1.14.1-9.0.1.module+el8.0.0+5347+9282027e.aarch64.rpm	d16c5470e2c3669b9b5642ea2d343e98	-
	nginx-mod-http-perl-1.14.1-9.0.1.module+el8.0.0+5347+9282027e.aarch64.rpm	c4cf340a9556fd2287a549e2f1672b57	-
	nginx-mod-http-xslt-filter-1.14.1-9.0.1.module+el8.0.0+5347+9282027e.aarch64.rpm	d9436145b63f6ed4200705436987535d	-
	nginx-mod-mail-1.14.1-9.0.1.module+el8.0.0+5347+9282027e.aarch64.rpm	6b2e9580a9587c5a9a4be2b7a5c8b4a9	-
	nginx-mod-stream-1.14.1-9.0.1.module+el8.0.0+5347+9282027e.aarch64.rpm	b6790f7859e69fea7ac1469425aaff3e	-

Oracle Linux 8 (x86_64)	nginx-1.14.1-9.0.1.module+el8.0.0+5347+9282027e.src.rpm	6ed89c9589ee64bc869c816773d51ef4	-
	nginx-1.14.1-9.0.1.module+el8.0.0+5347+9282027e.x86_64.rpm	32ab792d25e0dc881a199879d97a28ef	-
	nginx-all-modules-1.14.1-9.0.1.module+el8.0.0+5347+9282027e.noarch.rpm	2ca6babe2abf16e756600251157a00f3	-
	nginx-filesystem-1.14.1-9.0.1.module+el8.0.0+5347+9282027e.noarch.rpm	d1e8acb44ac614179b7524bb85455ec3	-
	nginx-mod-http-image-filter-1.14.1-9.0.1.module+el8.0.0+5347+9282027e.x86_64.rpm	b4692c53bad999820c4c4df9aba0ad46	-
	nginx-mod-http-perl-1.14.1-9.0.1.module+el8.0.0+5347+9282027e.x86_64.rpm	1f87c91e4fea4d70e947aa4765e0a7f2	-
	nginx-mod-http-xslt-filter-1.14.1-9.0.1.module+el8.0.0+5347+9282027e.x86_64.rpm	448f03766fd388c24fe00f9b966fb7e2	-
	nginx-mod-mail-1.14.1-9.0.1.module+el8.0.0+5347+9282027e.x86_64.rpm	c5c69398c5c3b6f243a19fbc66f0562d	-
	nginx-mod-stream-1.14.1-9.0.1.module+el8.0.0+5347+9282027e.x86_64.rpm	491bd99969b45c5f26eda03186fda6c2	-

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691