Mercurial > hg > nginx-site
comparison xml/en/security_advisories.xml @ 2726:a7a36efd10af
nginx-1.21.0, nginx-1.20.1
| author | Maxim Dounin <mdounin@mdounin.ru> |
|---|---|
| date | Tue, 25 May 2021 18:32:30 +0300 |
| parents | e35ed485070d |
| children | 0456ea786ef6 |
comparison
equal
deleted
inserted
replaced
| 2725:6d082b470918 | 2726:a7a36efd10af |
|---|---|
| 21 Patches are signed using one of the | 21 Patches are signed using one of the |
| 22 <link doc="pgp_keys.xml">PGP public keys</link>. | 22 <link doc="pgp_keys.xml">PGP public keys</link>. |
| 23 </para> | 23 </para> |
| 24 | 24 |
| 25 <security> | 25 <security> |
| 26 | |
| 27 <item name="1-byte memory overwrite in resolver" | |
| 28 severity="medium" | |
| 29 cve="2021-23017" | |
| 30 good="1.21.0+, 1.20.1+" | |
| 31 vulnerable="0.6.18-1.20.0"> | |
| 32 <patch name="patch.2021.resolver.txt" /> | |
| 33 </item> | |
| 26 | 34 |
| 27 <item name="Excessive CPU usage in HTTP/2 with small window updates" | 35 <item name="Excessive CPU usage in HTTP/2 with small window updates" |
| 28 severity="medium" | 36 severity="medium" |
| 29 advisory="http://mailman.nginx.org/pipermail/nginx-announce/2019/000249.html" | 37 advisory="http://mailman.nginx.org/pipermail/nginx-announce/2019/000249.html" |
| 30 cve="2019-9511" | 38 cve="2019-9511" |