Mercurial > hg > nginx-site

comparison xml/en/security_advisories.xml @ 1715:ce35c4764409

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
nginx-1.11.1, nginx-1.10.1
author Maxim Dounin <mdounin@mdounin.ru>
date Tue, 31 May 2016 17:17:05 +0300
parents e85d7bd9345f
children ecea2f0d22b6
comparison
equal deleted inserted replaced
1714:26f75ea49876 1715:ce35c4764409
21 Patches are signed using one of the 21 Patches are signed using one of the
22 <link doc="pgp_keys.xml">PGP public keys</link>. 22 <link doc="pgp_keys.xml">PGP public keys</link>.
23 </para> 23 </para>
24 24
25 <security> 25 <security>
26
27 <item name="NULL pointer dereference while writing client request body"
28 severity="medium"
29 advisory="http://mailman.nginx.org/pipermail/nginx-announce/2016/"
30 cve="2016-4450"
31 good="1.11.1+, 1.10.1+"
32 vulnerable="1.3.9-1.11.0">
33 <patch name="patch.2016.write.txt" versions="1.9.13-1.11.0" />
34 <patch name="patch.2016.write2.txt" versions="1.3.9-1.9.12" />
35 </item>
26 36
27 <item name="Invalid pointer dereference in resolver" 37 <item name="Invalid pointer dereference in resolver"
28 severity="medium" 38 severity="medium"
29 advisory="http://mailman.nginx.org/pipermail/nginx-announce/2016/000169.html" 39 advisory="http://mailman.nginx.org/pipermail/nginx-announce/2016/000169.html"
30 cve="2016-0742" 40 cve="2016-0742"