Oracle Errata System
Oracle Linux
5.11
2022-04-27T06:35:47
ELSA-2019-2799: nginx:1.14 security update (IMPORTANT)
Oracle Linux 8
[1:1.14.1-9.0.1]
- Remove Red Hat references [Orabug: 29498217]
[1:1.14.1-9]
- Resolves: #1744811 - CVE-2019-9511 nginx:1.14/nginx: HTTP/2: large amount of
data request leads to denial of service
- Resolves: #1744325 - CVE-2019-9513 nginx:1.14/nginx: HTTP/2: flood using
PRIORITY frames resulting in excessive resource consumption
- Resolves: #1745094 - CVE-2019-9516 nginx:1.14/nginx: HTTP/2: 0-length
headers leads to denial of service
IMPORTANT
Copyright 2019 Oracle, Inc.
CVE-2019-9511
CVE-2019-9513
CVE-2019-9516
nginx-mod-http-image-filter
nginx-mod-http-xslt-filter
nginx-mod-http-perl
oraclelinux-release
nginx-all-modules
nginx-mod-mail
nginx
nginx-mod-stream
nginx-filesystem
/etc/dnf/modules.d/nginx.module
\[nginx\][\w\W]*
1
82562ea9ad986da3
\nstream\s*=\s*1\.14\b[\w\W]*\nstate\s*=\s*(enabled|1|true)|\nstate\s*=\s*(enabled|1|true)[\w\W]*\nstream\s*=\s*1\.14\b
^8
aarch64
1:1.14.1-9.0.1.module+el8.0.0+5347+9282027e
x86_64