Mercurial > hg > nginx-site
comparison xml/en/security_advisories.xml @ 2726:a7a36efd10af
nginx-1.21.0, nginx-1.20.1
author | Maxim Dounin <mdounin@mdounin.ru> |
---|---|
date | Tue, 25 May 2021 18:32:30 +0300 |
parents | e35ed485070d |
children | 0456ea786ef6 |
comparison
equal
deleted
inserted
replaced
2725:6d082b470918 | 2726:a7a36efd10af |
---|---|
21 Patches are signed using one of the | 21 Patches are signed using one of the |
22 <link doc="pgp_keys.xml">PGP public keys</link>. | 22 <link doc="pgp_keys.xml">PGP public keys</link>. |
23 </para> | 23 </para> |
24 | 24 |
25 <security> | 25 <security> |
26 | |
27 <item name="1-byte memory overwrite in resolver" | |
28 severity="medium" | |
29 cve="2021-23017" | |
30 good="1.21.0+, 1.20.1+" | |
31 vulnerable="0.6.18-1.20.0"> | |
32 <patch name="patch.2021.resolver.txt" /> | |
33 </item> | |
26 | 34 |
27 <item name="Excessive CPU usage in HTTP/2 with small window updates" | 35 <item name="Excessive CPU usage in HTTP/2 with small window updates" |
28 severity="medium" | 36 severity="medium" |
29 advisory="http://mailman.nginx.org/pipermail/nginx-announce/2019/000249.html" | 37 advisory="http://mailman.nginx.org/pipermail/nginx-announce/2019/000249.html" |
30 cve="2019-9511" | 38 cve="2019-9511" |