drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Denial of Service in nginx
Name: |
Denial of Service in nginx |
|
ID: |
FEDORA-2014-11370 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 19 |
|
Datum: |
Sa, 11. Oktober 2014, 09:10 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3616 |
|
Applikationen: |
nginx |
|
Originalnachricht |
Name : nginx Product : Fedora 19 Version : 1.4.7 Release : 3.fc19 URL : http://nginx.org/ Summary : A high performance web server and reverse proxy server Description : Nginx is a web server and a reverse proxy server for HTTP, SMTP, POP3 and IMAP protocols, with a strong focus on high concurrency, performance and low memory usage.
------------------------------------------------------------------------------- - Update Information:
* Security fix for CVE-2014-3616
* Create nginx-filesystem subpackage ------------------------------------------------------------------------------- - ChangeLog:
* Mon Sep 22 2014 Jamie Nguyen <jamielinux@fedoraproject.org> - 1:1.4.7-3 - create nginx-filesystem subpackage (patch from Remi Collet) * Mon Sep 22 2014 Jamie Nguyen <jamielinux@fedoraproject.org> - 1:1.4.7-2 - patch for CVE-2014-3616 virtual host confusion (#1142573, #1142575) * Tue Mar 18 2014 Jamie Nguyen <jamielinux@fedoraproject.org> - 1:1.4.7-1 - update to upstream release 1.4.7 * Wed Mar 5 2014 Jamie Nguyen <jamielinux@fedoraproject.org> - 1:1.4.6-1 - update to upstream release 1.4.6 * Sun Feb 16 2014 Jamie Nguyen <jamielinux@fedoraproject.org> - 1:1.4.5-2 - avoid multiple index directives (#1065488) * Sun Feb 16 2014 Jamie Nguyen <jamielinux@fedoraproject.org> - 1:1.4.5-1 - update to upstream release 1.4.5 * Wed Nov 20 2013 Peter Borsa <peter.borsa@gmail.com> - 1:1.4.4-1 - Update to upstream release 1.4.4 - Security fix BZ 1032267 * Sun Nov 3 2013 Jamie Nguyen <jamielinux@fedoraproject.org> - 1:1.4.3-1 - update to upstream release 1.4.3 * Fri Aug 9 2013 Jonathan Steffan <jsteffan@fedoraproject.org> - 1:1.4.2-3 - Add in conditionals to build for non-systemd targets * Sat Aug 3 2013 Petr Pisar <ppisar@redhat.com> - 1:1.4.2-2 - Perl 5.18 rebuild * Fri Jul 19 2013 Jamie Nguyen <jamielinux@fedoraproject.org> - 1:1.4.2-1 - update to upstream release 1.4.2 * Wed Jul 17 2013 Petr Pisar <ppisar@redhat.com> - 1:1.4.1-3 - Perl 5.18 rebuild * Tue Jun 11 2013 Remi Collet <rcollet@redhat.com> - 1:1.4.1-2 - rebuild for new GD 2.1.0 ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #1142573 - CVE-2014-3616 nginx: virtual host confusion https://bugzilla.redhat.com/show_bug.cgi?id=1142573 ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update nginx' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|