Mercurial > hg > nginx-site
comparison xml/en/security_advisories.xml @ 906:ec5d7bb1d40c
Added CVE-2013-2070 advisory link.
Additionally, capitalized HTTP properly in the advisory name.
author | Maxim Dounin <mdounin@mdounin.ru> |
---|---|
date | Mon, 13 May 2013 15:36:37 +0400 |
parents | 22bd9315e047 |
children | ef5485fb932d |
comparison
equal
deleted
inserted
replaced
905:f0b851313106 | 906:ec5d7bb1d40c |
---|---|
22 <link doc="pgp_keys.xml">PGP public keys</link>. | 22 <link doc="pgp_keys.xml">PGP public keys</link>. |
23 </para> | 23 </para> |
24 | 24 |
25 <security> | 25 <security> |
26 | 26 |
27 <item name="Memory disclosure with specially crafted http backend responses" | 27 <item name="Memory disclosure with specially crafted HTTP backend responses" |
28 severity="medium" | 28 severity="medium" |
29 advisory="http://mailman.nginx.org/pipermail/nginx-announce/2013/000114.html" | |
29 cve="2013-2070" | 30 cve="2013-2070" |
30 good="1.5.0+, 1.4.1+, 1.2.9+" | 31 good="1.5.0+, 1.4.1+, 1.2.9+" |
31 vulnerable="1.1.4-1.2.8, 1.3.9-1.4.0"> | 32 vulnerable="1.1.4-1.2.8, 1.3.9-1.4.0"> |
32 <patch name="patch.2013.chunked.txt" versions="1.3.9-1.4.0" /> | 33 <patch name="patch.2013.chunked.txt" versions="1.3.9-1.4.0" /> |
33 <patch name="patch.2013.proxy.txt" versions="1.1.4-1.2.8" /> | 34 <patch name="patch.2013.proxy.txt" versions="1.1.4-1.2.8" /> |