openSUSE-SU-2017:2003-1

Опубликовано: 29 июл. 2017

Источник: suse-cvrf

Описание

Security update for nginx

This update for nginx fixes the following issues:

CVE-2017-7529: A remote attacker could have used specially crafted requests to trigger an integer overflow the nginx range filter module to leak potentially sensitive information (boo#1048265)

Список пакетов

openSUSE Leap 42.2

nginx-1.8.1-10.5.1

Ссылки

https://lists.opensuse.org/opensuse-updates/2017-07/msg00109.html
E-Mail link for openSUSE-SU-2017:2003-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

Nginx versions since 0.5.6 up to and including 1.13.2 are vulnerable to integer overflow vulnerability in nginx range filter module resulting into leak of potentially sensitive information triggered by specially crafted request.

Затронутые продукты

openSUSE Leap 42.2:nginx-1.8.1-10.5.1

Ссылки

https://www.suse.com/security/cve/CVE-2017-7529.html
CVE-2017-7529
https://bugzilla.suse.com/1048265
SUSE Bug 1048265

openSUSE-SU-2017:2003-1

Описание

Список пакетов

openSUSE Leap 42.2

Ссылки

Уязвимость: CVE-2017-7529

Описание

Затронутые продукты

Ссылки