Описание
ELSA-2021-2290: nginx:1.16 security update (IMPORTANT)
[1.16.1-2.0.1.1]
- Remove Red Hat references [Orabug: 29498217]
[1:1.16.1-2.1]
- Resolves: #1963174 - CVE-2021-23017 nginx:1.16/nginx: Off-by-one in ngx_resolver_copy() when labels are followed by a pointer to a root domain name
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
Module nginx:1.16 is enabled
nginx
1.16.1-2.0.1.module+el8.4.0+20188+a733e426.1
nginx-all-modules
1.16.1-2.0.1.module+el8.4.0+20188+a733e426.1
nginx-filesystem
1.16.1-2.0.1.module+el8.4.0+20188+a733e426.1
nginx-mod-http-image-filter
1.16.1-2.0.1.module+el8.4.0+20188+a733e426.1
nginx-mod-http-perl
1.16.1-2.0.1.module+el8.4.0+20188+a733e426.1
nginx-mod-http-xslt-filter
1.16.1-2.0.1.module+el8.4.0+20188+a733e426.1
nginx-mod-mail
1.16.1-2.0.1.module+el8.4.0+20188+a733e426.1
nginx-mod-stream
1.16.1-2.0.1.module+el8.4.0+20188+a733e426.1
Oracle Linux x86_64
Module nginx:1.16 is enabled
nginx
1.16.1-2.0.1.module+el8.4.0+20188+a733e426.1
nginx-all-modules
1.16.1-2.0.1.module+el8.4.0+20188+a733e426.1
nginx-filesystem
1.16.1-2.0.1.module+el8.4.0+20188+a733e426.1
nginx-mod-http-image-filter
1.16.1-2.0.1.module+el8.4.0+20188+a733e426.1
nginx-mod-http-perl
1.16.1-2.0.1.module+el8.4.0+20188+a733e426.1
nginx-mod-http-xslt-filter
1.16.1-2.0.1.module+el8.4.0+20188+a733e426.1
nginx-mod-mail
1.16.1-2.0.1.module+el8.4.0+20188+a733e426.1
nginx-mod-stream
1.16.1-2.0.1.module+el8.4.0+20188+a733e426.1
Связанные CVE
Связанные уязвимости
A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
A security issue in nginx resolver was identified, which might allow a ...