The only issue I see is not a blocker, but should probably be fixed:
I: libnghttp2-14: hardening-no-bindnow
usr/lib/x86_64-linux-gnu/libnghttp2.so.14.13.3
Otherwise, since this is meant to support a reverse proxy, it should get
a review by the Security Team. Reverse proxies are often security-
sensitive, even if there is no CVE I could find in mitre.
** Changed in: nghttp2 (Ubuntu)
Status: Confirmed => In Progress
** Changed in: nghttp2 (Ubuntu)
Assignee: (unassigned) => Mathieu Trudel-Lapierre (cyphermox)
** Changed in: nghttp2 (Ubuntu)
Status: In Progress => New
** Changed in: nghttp2 (Ubuntu)
Assignee: Mathieu Trudel-Lapierre (cyphermox) => Ubuntu Security Team
(ubuntu-security)
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1687454
Title:
[MIR] nghttp2
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/nghttp2/+bug/1687454/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
