Skip to main content
Services
How We Work
Technology
Results
Resources
Company
Log in
Get Assessment
Vulnerability Intelligence
ELSA-2026-7667
ELSA-2026-7667
UNKNOWN
ELSA-2026-7667: nghttp2 security update (IMPORTANT)
Published Apr 13, 2026
Modified 3 days ago
Fix available
Details
[1.33.0-6.2]
fix Denial of service: Assertion failure due to the missing state validation (CVE-2026-27135)
Affected Packages
libnghttp2
OracleLinux 8
Fixed in:
0:1.33.0-6.el8_10.2
libnghttp2-devel
OracleLinux 8
Fixed in:
0:1.33.0-6.el8_10.2
nghttp2
OracleLinux 8
Fixed in:
0:1.33.0-6.el8_10.2
Related
CVE-2026-27135
Ecosystems
OracleLinux 8
Timeline
Published
Apr 13, 2026
Modified
Apr 13, 2026
ELSA-2026-7667 | Mondoo Vulnerability Intelligence