Release date:
2026-05-07 04:46:09 UTC
Description:
- CVE-2023-35945: fix memory leak on RST_STREAM followed by GOAWAY
- CVE-2026-27135: fix iframe state validation to prevent assertion failure
Updated packages:
-
libnghttp2-1.43.0-5.el9_2.1.tuxcare.els2.i686.rpm
sha:cf8c0e07099eaf1a1ebab3664a9fe9aa868d855fd45df0895fff4d27857480da
-
libnghttp2-1.43.0-5.el9_2.1.tuxcare.els2.x86_64.rpm
sha:b650a4360c348b93c532f6b1718babba2bf3861a30e7dc6e9ea76869623528a8
-
libnghttp2-devel-1.43.0-5.el9_2.1.tuxcare.els2.i686.rpm
sha:22c2bb5f950e4a1c19a316feb102397e1fc0df90da83689f715bdbcb6ab35501
-
libnghttp2-devel-1.43.0-5.el9_2.1.tuxcare.els2.x86_64.rpm
sha:5252e59ad016655217cfe2071cb28160f310bd92faac00d0a2bebd9e9ff2546e
-
nghttp2-1.43.0-5.el9_2.1.tuxcare.els2.x86_64.rpm
sha:3c65b8301ab628f2a677d60fad5859ad1814227240e6155ac91fea93701bbb92
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
