What is the severity of RHSA-2019:2799?

The severity of RHSA-2019:2799 is classified as important due to the potential for denial of service.

How do I fix RHSA-2019:2799?

To fix RHSA-2019:2799, update the nginx package to version 1.14.1-9.module+el8.0.0+4108+af250afe.

What are the affected packages in RHSA-2019:2799?

Affected packages in RHSA-2019:2799 include nginx, nginx-all-modules, nginx-filesystem, and several other nginx-related packages.

Is there a specific CVE associated with RHSA-2019:2799?

Yes, RHSA-2019:2799 addresses CVE-2019-2031 related to a denial of service vulnerability in HTTP/2.

What are the potential impacts of not addressing RHSA-2019:2799?

Not addressing RHSA-2019:2799 could lead to denial of service, affecting the availability of web services managed by nginx.

Vulnerability/
RHSA-2019:2799

17/9/2019

7/11/2024

RHSA-2019:2799: Important: nginx:1.14 security update

First published: Tue Sep 17 2019(Updated: )

Nginx is a web server and a reverse proxy server for HTTP, SMTP, POP3 (Post Office Protocol 3) and IMAP protocols, with a focus on high concurrency, performance and low memory usage. <br>Security Fix(es):<br><li> HTTP/2: large amount of data request leads to denial of service (CVE-2019-9511)</li> <li> HTTP/2: flood using PRIORITY frames resulting in excessive resource consumption (CVE-2019-9513)</li> <li> HTTP/2: 0-length headers leads to denial of service (CVE-2019-9516)</li> For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Never miss a vulnerability like this again

Reference Links

https://access.redhat.com/errata/RHSA-2019:2799 (Advisory)

Frequently Asked Questions

What is the severity of RHSA-2019:2799?
The severity of RHSA-2019:2799 is classified as important due to the potential for denial of service.
How do I fix RHSA-2019:2799?
To fix RHSA-2019:2799, update the nginx package to version 1.14.1-9.module+el8.0.0+4108+af250afe.
What are the affected packages in RHSA-2019:2799?
Affected packages in RHSA-2019:2799 include nginx, nginx-all-modules, nginx-filesystem, and several other nginx-related packages.
Is there a specific CVE associated with RHSA-2019:2799?
Yes, RHSA-2019:2799 addresses CVE-2019-2031 related to a denial of service vulnerability in HTTP/2.
What are the potential impacts of not addressing RHSA-2019:2799?
Not addressing RHSA-2019:2799 could lead to denial of service, affecting the availability of web services managed by nginx.

agent/severity
agent/type
agent/first-publish-date
agent/softwarecombine
agent/last-modified-date
agent/title
agent/remedy
agent/references
agent/tags
agent/description
agent/event
collector/redhat-errata
source/Red Hat
anchor-id/RHSA-2019:2799
agent/software-canonical-lookup
package-manager/redhat

RHSA-2019:2799: Important: nginx:1.14 security update

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of RHSA-2019:2799?

How do I fix RHSA-2019:2799?

What are the affected packages in RHSA-2019:2799?

Is there a specific CVE associated with RHSA-2019:2799?

What are the potential impacts of not addressing RHSA-2019:2799?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of RHSA-2019:2799?

How do I fix RHSA-2019:2799?

What are the affected packages in RHSA-2019:2799?

Is there a specific CVE associated with RHSA-2019:2799?

What are the potential impacts of not addressing RHSA-2019:2799?

Affected Software	Affected Version	How to fix
redhat/nginx	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-all-modules	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-filesystem	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-debuginfo	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-debugsource	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-http-image-filter	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-http-image-filter-debuginfo	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-http-perl	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-http-perl-debuginfo	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-http-xslt-filter	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-http-xslt-filter-debuginfo	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-mail	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-mail-debuginfo	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-stream	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-stream-debuginfo	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-debuginfo	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-debugsource	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-http-image-filter	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-http-image-filter-debuginfo	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-http-perl	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-http-perl-debuginfo	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-http-xslt-filter	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-http-xslt-filter-debuginfo	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-mail	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-mail-debuginfo	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-stream	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-stream-debuginfo	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-debuginfo	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-debugsource	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-http-image-filter	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-http-image-filter-debuginfo	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-http-perl	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-http-perl-debuginfo	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-http-xslt-filter	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-http-xslt-filter-debuginfo	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-mail	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-mail-debuginfo	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-stream	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx-mod-stream-debuginfo	<1.14.1-9.module+el8.0.0+4108+af250afe	1.14.1-9.module+el8.0.0+4108+af250afe
redhat/nginx	<1.14.1-9.module+el8.0.0+4108+af250afe.aa	1.14.1-9.module+el8.0.0+4108+af250afe.aa
redhat/nginx-debuginfo	<1.14.1-9.module+el8.0.0+4108+af250afe.aa	1.14.1-9.module+el8.0.0+4108+af250afe.aa
redhat/nginx-debugsource	<1.14.1-9.module+el8.0.0+4108+af250afe.aa	1.14.1-9.module+el8.0.0+4108+af250afe.aa
redhat/nginx-mod-http-image-filter	<1.14.1-9.module+el8.0.0+4108+af250afe.aa	1.14.1-9.module+el8.0.0+4108+af250afe.aa
redhat/nginx-mod-http-image-filter-debuginfo	<1.14.1-9.module+el8.0.0+4108+af250afe.aa	1.14.1-9.module+el8.0.0+4108+af250afe.aa
redhat/nginx-mod-http-perl	<1.14.1-9.module+el8.0.0+4108+af250afe.aa	1.14.1-9.module+el8.0.0+4108+af250afe.aa
redhat/nginx-mod-http-perl-debuginfo	<1.14.1-9.module+el8.0.0+4108+af250afe.aa	1.14.1-9.module+el8.0.0+4108+af250afe.aa
redhat/nginx-mod-http-xslt-filter	<1.14.1-9.module+el8.0.0+4108+af250afe.aa	1.14.1-9.module+el8.0.0+4108+af250afe.aa
redhat/nginx-mod-http-xslt-filter-debuginfo	<1.14.1-9.module+el8.0.0+4108+af250afe.aa	1.14.1-9.module+el8.0.0+4108+af250afe.aa
redhat/nginx-mod-mail	<1.14.1-9.module+el8.0.0+4108+af250afe.aa	1.14.1-9.module+el8.0.0+4108+af250afe.aa
redhat/nginx-mod-mail-debuginfo	<1.14.1-9.module+el8.0.0+4108+af250afe.aa	1.14.1-9.module+el8.0.0+4108+af250afe.aa
redhat/nginx-mod-stream	<1.14.1-9.module+el8.0.0+4108+af250afe.aa	1.14.1-9.module+el8.0.0+4108+af250afe.aa
redhat/nginx-mod-stream-debuginfo	<1.14.1-9.module+el8.0.0+4108+af250afe.aa	1.14.1-9.module+el8.0.0+4108+af250afe.aa