OESA-2026-2977

Source
https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2026-2977
Import Source
https://repo.openeuler.org/security/data/osv/OESA-2026-2977.json
JSON Data
https://api.test.osv.dev/v1/vulns/OESA-2026-2977
Upstream
Published
2026-07-09T12:56:10Z
Modified
2026-07-14T08:15:14.207236627Z
Summary
nghttp2 security update
Details

The framing layer of HTTP/2 is implemented as a form of reusable C library. On top of that, we have implemented HTTP/2 client, server and proxy. We have also developed load test and benchmarking tool for HTTP/2.

Security Fix(es):

nghttp2's nghttpx proxy through 1.69.0 forwards an HTTP/1.1 Upgrade request that also carries a Content-Length header and body onto reusable keep-alive backend connections, re-adding the Upgrade and Connection headers while passing Content-Length verbatim. A backend that resolves the resulting ambiguous message in the attacker's favor enables HTTP request/response smuggling and cross-client response-queue poisoning.(CVE-2026-58055)

Database specific
{
    "severity": "Medium"
}
References

Affected packages

openEuler:20.03-LTS-SP4 / nghttp2

Package

Name
nghttp2
Purl
pkg:rpm/openEuler/nghttp2&distro=openEuler-20.03-LTS-SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.41.0-8.oe2003sp4

Ecosystem specific

{
    "src": [
        "nghttp2-1.41.0-8.oe2003sp4.src.rpm"
    ],
    "x86_64": [
        "libnghttp2-1.41.0-8.oe2003sp4.x86_64.rpm",
        "libnghttp2-devel-1.41.0-8.oe2003sp4.x86_64.rpm",
        "nghttp2-1.41.0-8.oe2003sp4.x86_64.rpm",
        "nghttp2-debuginfo-1.41.0-8.oe2003sp4.x86_64.rpm",
        "nghttp2-debugsource-1.41.0-8.oe2003sp4.x86_64.rpm"
    ],
    "aarch64": [
        "libnghttp2-1.41.0-8.oe2003sp4.aarch64.rpm",
        "libnghttp2-devel-1.41.0-8.oe2003sp4.aarch64.rpm",
        "nghttp2-1.41.0-8.oe2003sp4.aarch64.rpm",
        "nghttp2-debuginfo-1.41.0-8.oe2003sp4.aarch64.rpm",
        "nghttp2-debugsource-1.41.0-8.oe2003sp4.aarch64.rpm"
    ],
    "noarch": [
        "nghttp2-help-1.41.0-8.oe2003sp4.noarch.rpm"
    ]
}

Database specific

source
"https://repo.openeuler.org/security/data/osv/OESA-2026-2977.json"