ELA-441-1 nginx security update

Debian 10218 Published by

A nginx security update has been released for Debian GNU/Linux 8 Extended LTS to address a buffer overflow.



ELA-441-1 nginx security update

Package nginx
Version 1.6.2-5+deb8u9
Related CVEs CVE-2017-20005

Jamie Landeg-Jones and Manfred Paul discovered a buffer overflow vulnerability in NGINX, a small, powerful, scalable web/proxy server.

NGINX has a buffer overflow for years that exceed four digits, as demonstrated by a file with a modification date in 1969 that causes an integer overflow (or a false modification date far in the future), when encountered by the autoindex module.

For Debian 8 jessie, these problems have been fixed in version 1.6.2-5+deb8u9.

We recommend that you upgrade your nginx packages.

Further information about Extended LTS security advisories can be found at: https://deb.freexian.com/extended-lts/

  ELA-441-1 nginx security update

USN-4969-3: DHCP regression

iOS 15 and iPadOS 15 Beta 1 released

Windows

Linux

macOS

Community

  • dhamu
    Hello Phil, I have a Linux Tutorial website that curre ...
  • StephanX
    Hi friends, i am new in the Linux universe but i try to ...
  • Philipp
    I would try the XanMod kernel: https://xanmod.orgĀ  I ...