Mercurial > hg > nginx-site

changeset 1647:e85d7bd9345f

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Advisory links.
author Maxim Dounin <mdounin@mdounin.ru>
date Wed, 27 Jan 2016 18:15:30 +0300
parents 03b2e0e2387e
children e99baece54c6
files xml/en/security_advisories.xml
diffstat 1 files changed, 4 insertions(+), 0 deletions(-) [+]
line wrap: on
line diff
--- a/xml/en/security_advisories.xml
+++ b/xml/en/security_advisories.xml
@@ -26,24 +26,28 @@ Patches are signed using one of the
 
 <item name="Invalid pointer dereference in resolver"
       severity="medium"
+      advisory="http://mailman.nginx.org/pipermail/nginx-announce/2016/000169.html"
       cve="2016-0742"
       good="1.9.10+, 1.8.1+"
       vulnerable="0.6.18-1.9.9" />
 
 <item name="Use-after-free during CNAME response processing in resolver"
       severity="medium"
+      advisory="http://mailman.nginx.org/pipermail/nginx-announce/2016/000169.html"
       cve="2016-0746"
       good="1.9.10+, 1.8.1+"
       vulnerable="0.6.18-1.9.9" />
 
 <item name="Insufficient limits of CNAME resolution in resolver"
       severity="medium"
+      advisory="http://mailman.nginx.org/pipermail/nginx-announce/2016/000169.html"
       cve="2016-0747"
       good="1.9.10+, 1.8.1+"
       vulnerable="0.6.18-1.9.9" />
 
 <item name="SSL session reuse vulnerability"
       severity="medium"
+      advisory="http://mailman.nginx.org/pipermail/nginx-announce/2014/000147.html"
       cve="2014-3616"
       good="1.7.5+, 1.6.2+"
       vulnerable="0.5.6-1.7.4">