Package "libnghttp2-14"

Name:	libnghttp2-14
Description:	library implementing HTTP/2 protocol (shared library)
Latest version:	1.64.0-1.1ubuntu1.1
Release:	questing (25.10)
Level:	security
Repository:	main
Head package:	nghttp2
Homepage:	https://nghttp2.org/

Links

Raw Package Information

All versions of this package

Bug fixes

List of files in package

Repository home page

Download "libnghttp2-14"

32-bit deb package

64-bit deb package

APT INSTALL

Other versions of "libnghttp2-14" in Questing

Repository	Area	Version
base	main	1.64.0-1.1ubuntu1
updates	main	1.64.0-1.1ubuntu1.1

Changelog

Version: 1.64.0-1.1ubuntu1.1 2026-05-05 18:07:38 UTC

nghttp2 (1.64.0-1.1ubuntu1.1) questing-security; urgency=medium * SECURITY UPDATE: Denial of service through assertion failure. - debian/patches/CVE-2026-27135-pre1.patch: Add iframe->state == NGHTTP2_IB_IGN_ALL checks in lib/nghttp2_session.c. - debian/patches/CVE-2026-27135-pre2.patch: Add iframe->state == NGHTTP2_IB_IGN_ALL checks in lib/nghttp2_session.c. - debian/patches/CVE-2026-27135.patch: Add iframe->state == NGHTTP2_IB_IGN_ALL checks in lib/nghttp2_session.c. - debian/patches/CVE-2026-27135-post1.patch: Add iframe->state == NGHTTP2_IB_IGN_ALL checks in lib/nghttp2_session.c. - CVE-2026-27135 -- Hlib Korzhynskyy <email address hidden> Thu, 23 Apr 2026 16:13:11 -0230

CVE-2026-27135

nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in C. Prior to version 1.68.1, the nghttp2 library stops reading the incomi

About - Send Feedback to @ubuntu_updates

Package "libnghttp2-14"

Links

Download "libnghttp2-14"

Other versions of "libnghttp2-14" in Questing

Changelog

Share this page

Bookmarks

Latest updates

updates

security

PPA updates