Publishing details

• Published on 2024-04-25
• Copied from ubuntu focal in PPA for Ubuntu Security Proposed by Fabian Toepfer

Changelog

nghttp2 (1.40.0-1ubuntu0.3) focal-security; urgency=medium

  * SECURITY UPDATE: HTTP/2 protocol denial of service
    - debian/patches/CVE-2024-28182-1.patch: Add
      nghttp2_option_set_max_continuations
    - debian/patches/CVE-2024-28182-2.patch: Limit CONTINUATION frames
      following an incoming HEADER frame
    - CVE-2024-28182

 -- Fabian Toepfer <email address hidden>  Thu, 18 Apr 2024 09:15:36 +0200

Builds

• amd64
• arm64
• armhf
• i386
• ppc64el
• riscv64
• s390x

Built packages

• libnghttp2-14 library implementing HTTP/2 protocol (shared library)

• libnghttp2-14-dbgsym debug symbols for libnghttp2-14

• libnghttp2-dev library implementing HTTP/2 protocol (development files)

• libnghttp2-doc library implementing HTTP/2 protocol (documentation)

• nghttp2 server, proxy and client implementing HTTP/2

• nghttp2-client client implementing HTTP/2 protocol

• nghttp2-client-dbgsym debug symbols for nghttp2-client

• nghttp2-proxy reverse proxy implementing HTTP/2 protocol

• nghttp2-proxy-dbgsym debug symbols for nghttp2-proxy

• nghttp2-server server implementing HTTP/2 protocol

• nghttp2-server-dbgsym debug symbols for nghttp2-server

Package files

• libnghttp2-14-dbgsym_1.40.0-1ubuntu0.3_amd64.ddeb (180.6 KiB)
• libnghttp2-14-dbgsym_1.40.0-1ubuntu0.3_arm64.ddeb (181.7 KiB)
• libnghttp2-14-dbgsym_1.40.0-1ubuntu0.3_armhf.ddeb (176.4 KiB)
• libnghttp2-14-dbgsym_1.40.0-1ubuntu0.3_i386.ddeb (160.4 KiB)
• libnghttp2-14-dbgsym_1.40.0-1ubuntu0.3_ppc64el.ddeb (233.4 KiB)
• libnghttp2-14-dbgsym_1.40.0-1ubuntu0.3_riscv64.ddeb (176.2 KiB)
• libnghttp2-14-dbgsym_1.40.0-1ubuntu0.3_s390x.ddeb (183.5 KiB)
• libnghttp2-14_1.40.0-1ubuntu0.3_amd64.deb (78.0 KiB)
• libnghttp2-14_1.40.0-1ubuntu0.3_arm64.deb (73.8 KiB)
• libnghttp2-14_1.40.0-1ubuntu0.3_armhf.deb (67.3 KiB)
• libnghttp2-14_1.40.0-1ubuntu0.3_i386.deb (85.5 KiB)
• libnghttp2-14_1.40.0-1ubuntu0.3_ppc64el.deb (90.0 KiB)
• libnghttp2-14_1.40.0-1ubuntu0.3_riscv64.deb (70.1 KiB)
• libnghttp2-14_1.40.0-1ubuntu0.3_s390x.deb (73.5 KiB)
• libnghttp2-dev_1.40.0-1ubuntu0.3_amd64.deb (95.9 KiB)
• libnghttp2-dev_1.40.0-1ubuntu0.3_arm64.deb (93.3 KiB)
• libnghttp2-dev_1.40.0-1ubuntu0.3_armhf.deb (86.9 KiB)
• libnghttp2-dev_1.40.0-1ubuntu0.3_i386.deb (103.6 KiB)
• libnghttp2-dev_1.40.0-1ubuntu0.3_ppc64el.deb (110.2 KiB)
• libnghttp2-dev_1.40.0-1ubuntu0.3_riscv64.deb (159.2 KiB)
• libnghttp2-dev_1.40.0-1ubuntu0.3_s390x.deb (92.0 KiB)
• libnghttp2-doc_1.40.0-1ubuntu0.3_all.deb (578.1 KiB)
• nghttp2-client-dbgsym_1.40.0-1ubuntu0.3_amd64.ddeb (1.8 MiB)
• nghttp2-client-dbgsym_1.40.0-1ubuntu0.3_arm64.ddeb (1.8 MiB)
• nghttp2-client-dbgsym_1.40.0-1ubuntu0.3_armhf.ddeb (1.7 MiB)
• nghttp2-client-dbgsym_1.40.0-1ubuntu0.3_i386.ddeb (1.7 MiB)
• nghttp2-client-dbgsym_1.40.0-1ubuntu0.3_ppc64el.ddeb (2.0 MiB)
• nghttp2-client-dbgsym_1.40.0-1ubuntu0.3_riscv64.ddeb (1.3 MiB)
• nghttp2-client-dbgsym_1.40.0-1ubuntu0.3_s390x.ddeb (1.8 MiB)
• nghttp2-client_1.40.0-1ubuntu0.3_amd64.deb (148.9 KiB)
• nghttp2-client_1.40.0-1ubuntu0.3_arm64.deb (137.7 KiB)
• nghttp2-client_1.40.0-1ubuntu0.3_armhf.deb (133.2 KiB)
• nghttp2-client_1.40.0-1ubuntu0.3_i386.deb (163.3 KiB)
• nghttp2-client_1.40.0-1ubuntu0.3_ppc64el.deb (164.5 KiB)
• nghttp2-client_1.40.0-1ubuntu0.3_riscv64.deb (144.7 KiB)
• nghttp2-client_1.40.0-1ubuntu0.3_s390x.deb (140.6 KiB)
• nghttp2-proxy-dbgsym_1.40.0-1ubuntu0.3_amd64.ddeb (4.9 MiB)
• nghttp2-proxy-dbgsym_1.40.0-1ubuntu0.3_arm64.ddeb (4.8 MiB)
• nghttp2-proxy-dbgsym_1.40.0-1ubuntu0.3_armhf.ddeb (4.7 MiB)
• nghttp2-proxy-dbgsym_1.40.0-1ubuntu0.3_i386.ddeb (4.7 MiB)
• nghttp2-proxy-dbgsym_1.40.0-1ubuntu0.3_ppc64el.ddeb (5.1 MiB)
• nghttp2-proxy-dbgsym_1.40.0-1ubuntu0.3_riscv64.ddeb (4.1 MiB)
• nghttp2-proxy-dbgsym_1.40.0-1ubuntu0.3_s390x.ddeb (4.8 MiB)
• nghttp2-proxy_1.40.0-1ubuntu0.3_amd64.deb (363.2 KiB)
• nghttp2-proxy_1.40.0-1ubuntu0.3_arm64.deb (325.5 KiB)
• nghttp2-proxy_1.40.0-1ubuntu0.3_armhf.deb (322.1 KiB)
• nghttp2-proxy_1.40.0-1ubuntu0.3_i386.deb (391.3 KiB)
• nghttp2-proxy_1.40.0-1ubuntu0.3_ppc64el.deb (387.1 KiB)
• nghttp2-proxy_1.40.0-1ubuntu0.3_riscv64.deb (353.1 KiB)
• nghttp2-proxy_1.40.0-1ubuntu0.3_s390x.deb (323.3 KiB)
• nghttp2-server-dbgsym_1.40.0-1ubuntu0.3_amd64.ddeb (903.8 KiB)
• nghttp2-server-dbgsym_1.40.0-1ubuntu0.3_arm64.ddeb (896.3 KiB)
• nghttp2-server-dbgsym_1.40.0-1ubuntu0.3_armhf.ddeb (880.7 KiB)
• nghttp2-server-dbgsym_1.40.0-1ubuntu0.3_i386.ddeb (885.9 KiB)
• nghttp2-server-dbgsym_1.40.0-1ubuntu0.3_ppc64el.ddeb (1009.5 KiB)
• nghttp2-server-dbgsym_1.40.0-1ubuntu0.3_riscv64.ddeb (731.2 KiB)
• nghttp2-server-dbgsym_1.40.0-1ubuntu0.3_s390x.ddeb (913.7 KiB)
• nghttp2-server_1.40.0-1ubuntu0.3_amd64.deb (86.2 KiB)
• nghttp2-server_1.40.0-1ubuntu0.3_arm64.deb (80.0 KiB)
• nghttp2-server_1.40.0-1ubuntu0.3_armhf.deb (75.8 KiB)
• nghttp2-server_1.40.0-1ubuntu0.3_i386.deb (94.9 KiB)
• nghttp2-server_1.40.0-1ubuntu0.3_ppc64el.deb (99.7 KiB)
• nghttp2-server_1.40.0-1ubuntu0.3_riscv64.deb (84.0 KiB)
• nghttp2-server_1.40.0-1ubuntu0.3_s390x.deb (82.1 KiB)
• nghttp2_1.40.0-1ubuntu0.3.debian.tar.xz (21.6 KiB)
• nghttp2_1.40.0-1ubuntu0.3.dsc (2.6 KiB)
• nghttp2_1.40.0-1ubuntu0.3_all.deb (5.5 KiB)
• nghttp2_1.40.0.orig.tar.bz2 (1.8 MiB)