Ubuntu Security Update USN-8495-1: nghttp2 vulnerability

LinuxBot

Member
Joined
Apr 25, 2017
Messages
6,709
Reaction score
94
Credits
-1,257
It was discovered that the nghttp2 nghttpx proxy incorrectly handled HTTP/1.1 Upgrade requests that included a Content-Length header and body. A remote attacker could possibly use this issue to perform HTTP request and response smuggling attacks against backend services.

Continue reading...
 


Follow Linux.org

Members online


Latest posts

Top