Slackware 1048 Published by

A nghttp2 security update has been released for Slackware Linux 15.0 and current.

nghttp2 (SSA:2023-284-02)

nghttp2 (SSA:2023-284-02)

New nghttp2 packages are available for Slackware 15.0 and -current to
fix a security issue.

Here are the details from the Slackware 15.0 ChangeLog:
patches/packages/nghttp2-1.57.0-i586-1_slack15.0.txz: Upgraded.
This release has a fix to mitigate the HTTP/2 Rapid Reset vulnerability.
For more information, see:
(* Security fix *)

Where to find the new packages:

Thanks to the friendly folks at the OSU Open Source Lab
( for donating FTP and rsync hosting
to the Slackware project! :-)

Also see the "Get Slack" section on for
additional mirror sites near you.

Updated package for Slackware 15.0:

Updated package for Slackware x86_64 15.0:

Updated package for Slackware -current:

Updated package for Slackware x86_64 -current:

MD5 signatures:

Slackware 15.0 package:
929c1ce292b851c1d574b0dd81a8aaae nghttp2-1.57.0-i586-1_slack15.0.txz

Slackware x86_64 15.0 package:
3ec9af02aeb83c9de0df75fcb7859466 nghttp2-1.57.0-x86_64-1_slack15.0.txz

Slackware -current package:
e8e7d34aca72bcc7392617db1ffef37d n/nghttp2-1.57.0-i586-1.txz

Slackware x86_64 -current package:
591e23a6c50d8644653e90bb1a22c34f n/nghttp2-1.57.0-x86_64-1.txz

Installation instructions:

Upgrade the package as root:
# upgradepkg nghttp2-1.57.0-i586-1_slack15.0.txz


Slackware Linux Security Team