Mercurial > hg > nginx-site

diff xml/en/security_advisories.xml @ 1012:f7fe7da742c6

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
nginx-1.5.7, nginx-1.4.4
author Maxim Dounin <mdounin@mdounin.ru>
date Tue, 19 Nov 2013 18:57:50 +0400
parents ef5485fb932d
children 48fe3c9534bd
line wrap: on
line diff
--- a/xml/en/security_advisories.xml
+++ b/xml/en/security_advisories.xml
@@ -24,6 +24,14 @@ Patches are signed using one of the
 
 <security>
 
+<item name="Request line parsing vulnerability"
+      severity="medium"
+      cve="2013-4547"
+      good="1.5.7+, 1.4.4+"
+      vulnerable="0.8.41-1.5.16">
+<patch name="patch.2013.space.txt" />
+</item>
+
 <item name="Memory disclosure with specially crafted HTTP backend responses"
       severity="medium"
       advisory="http://mailman.nginx.org/pipermail/nginx-announce/2013/000114.html"