Vulnerability Bulletins

K49902412 : nghttp vulnerability CVE-2018-1000168

System information
   
Affected software F-Secure

Description
Security Advisory Description nghttp2 version >= 1.10.0 and nghttp2 <= v1.31.0 contains an Improper Input Validation CWE-20 vulnerability in ALTSVC frame handling that can result in segmentation ...

More info:

https://my.f5.com/manage/s/article/K49902412?utm_source=f5support&utm_medium=RSS

Standar resources
Property Value
CVE

Version history
Version Comments Date
1.0 Advisory issued 2023-06-03
Ministerio de Defensa
CNI
CCN
CCN-CERT