Lucene search
PRIOn knowledge basePRION:CVE-2018-16844HistoryNov 07, 2018 - 2:29 p.m.
Default configuration
2018-11-0714:29:00
PRIOn knowledge base
www.prio-n.com
473
nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive CPU usage. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the ‘http2’ option of the ‘listen’ directive is used in a configuration file.
| CPE | Name | Operator | Version |
|---|---|---|---|
| xcode | lt | 13.0 | |
| ubuntu_linux | eq | 16.04 | |
| ubuntu_linux | eq | 14.04 | |
| ubuntu_linux | eq | 18.04 | |
| ubuntu_linux | eq | 18.10 | |
| debian_linux | eq | 9.0 | |
| nginx | ge | 1.9.5 | |
| nginx | lt | 1.14.1 | |
| nginx | ge | 1.15.0 | |
| nginx | lt | 1.15.6 |
References
lists.opensuse.org/opensuse-security-announce/2019-09/msg00035.html
mailman.nginx.org/pipermail/nginx-announce/2018/000220.html
seclists.org/fulldisclosure/2021/Sep/36
www.securityfocus.com/bid/105868
www.securitytracker.com/id/1042038
access.redhat.com/errata/RHSA-2018:3680
access.redhat.com/errata/RHSA-2018:3681
bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16844
support.apple.com/kb/HT212818
usn.ubuntu.com/3812-1/
www.debian.org/security/2018/dsa-4335
Related
veracode
veracode
Denial Of Service (DoS) Through CPU Exhaustion
2019-05-16 03:22:55
ubuntucve
ubuntucve
osv
osv
CVE-2018-16844
2018-11-07 14:29:00
nginx - security update
2018-11-08 00:00:00
redhatcve
redhatcve
CVE-2018-16844
2020-03-21 01:52:38
debiancve
debiancve
CVE-2018-16844
2018-11-07 14:29:00
alpinelinux
alpinelinux
CVE-2018-16844
2018-11-07 14:29:00
cvelist
cvelist
CVE-2018-16844
2018-11-07 14:00:00
nginx
nginx
Excessive CPU usage in HTTP/2
2018-11-07 14:29:00
cve
cve
CVE-2018-16844
2018-11-07 14:29:00
nvd
nvd
CVE-2018-16844
2018-11-07 14:29:00
nessus
nessus
Photon OS 2.0: Nginx PHSA-2019-2.0-0117
2019-02-07 00:00:00
Photon OS 1.0: Nginx PHSA-2018-1.0-0201
2019-02-07 00:00:00
Amazon Linux AMI : nginx (ALAS-2018-1125)
2018-12-17 00:00:00
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2019-2.0-0117
2019-01-04 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2018-1.0-0201
2018-12-20 00:00:00
Important Photon OS Security Update - PHSA-2019-0117
2019-01-04 00:00:00
openvas
openvas
nginx 1.9.5 < 1.14.1, 1.15.x < 1.15.6 Multiple Vulnerabilities
2018-11-12 00:00:00
openSUSE: Security Advisory for nginx (openSUSE-SU-2019:0195-1)
2019-02-19 00:00:00
Fedora Update for nginx FEDORA-2018-7c540fdab4
2019-05-07 00:00:00
amazon
amazon
Medium: nginx
2018-12-13 17:27:00
ibm
ibm
altlinux
altlinux
Security fix for the ALT Linux 9 package nginx version 1.14.1-alt1
2018-11-06 00:00:00
suse
suse
Security update for nginx (moderate)
2019-02-18 00:00:00
Security update for nginx (important)
2019-09-11 00:00:00
redhat
redhat
(RHSA-2018:3681) Important: rh-nginx114-nginx security update
2018-11-27 08:38:25
(RHSA-2018:3680) Important: rh-nginx112-nginx security update
2018-11-27 08:37:44
debian
debian
[SECURITY] [DSA 4335-1] nginx security update
2018-11-08 21:34:23
freebsd
freebsd
NGINX -- Multiple vulnerabilities
2018-11-06 00:00:00
mageia
mageia
Updated nginx package fixes security vulnerabilities
2018-11-18 01:23:26
ubuntu
ubuntu
nginx vulnerabilities
2018-11-07 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: nginx-1.14.1-2.fc29
2018-11-24 02:29:55
[SECURITY] Fedora 29 Update: nginx-1.16.1-1.fc29
2019-09-04 04:07:11
githubexploit
githubexploit
Exploit for Uncontrolled Resource Consumption in F5 Nginx
2020-12-22 10:16:11
symantec
symantec
Nginx Vulnerabilities Jul 2017 - Oct 2019
2020-05-06 18:48:22
apple
apple
About the security content of Xcode 13
2021-09-20 00:00:00