Mercurial > hg > nginx-site

diff xml/en/security_advisories.xml @ 1715:ce35c4764409

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
nginx-1.11.1, nginx-1.10.1
author Maxim Dounin <mdounin@mdounin.ru>
date Tue, 31 May 2016 17:17:05 +0300
parents e85d7bd9345f
children ecea2f0d22b6
line wrap: on
line diff
--- a/xml/en/security_advisories.xml
+++ b/xml/en/security_advisories.xml
@@ -24,6 +24,16 @@ Patches are signed using one of the
 
 <security>
 
+<item name="NULL pointer dereference while writing client request body"
+      severity="medium"
+      advisory="http://mailman.nginx.org/pipermail/nginx-announce/2016/"
+      cve="2016-4450"
+      good="1.11.1+, 1.10.1+"
+      vulnerable="1.3.9-1.11.0">
+<patch name="patch.2016.write.txt" versions="1.9.13-1.11.0" />
+<patch name="patch.2016.write2.txt" versions="1.3.9-1.9.12" />
+</item>
+
 <item name="Invalid pointer dereference in resolver"
       severity="medium"
       advisory="http://mailman.nginx.org/pipermail/nginx-announce/2016/000169.html"