Uploaded image for project: 'Funtoo Linux'
  1. Funtoo Linux
  2. FL-4467

funtoo-overlay: Bump nginx version to 1.12.1 per CVE-2017-7529

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Fixed
    • Icon: Severe (Ebuild) Severe (Ebuild)
    • None
    • None

      Please bump the nginx version in the Funtoo portage overlay from 1.11.10 to 1.12.1 or higher. as there exists a potential for integer overflow in the range filter.
      http://mailman.nginx.org/pipermail/nginx-announce/2017/000200.html
      http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7529

      Also consider masking vulnerable versions. Workaround for vulnerability is to use below configuration:

      max_ranges 1;

            oleg oleg
            ennui ennui
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: