Mercurial > hg > nginx-site
comparison xml/en/security_advisories.xml @ 1715:ce35c4764409
nginx-1.11.1, nginx-1.10.1
author | Maxim Dounin <mdounin@mdounin.ru> |
---|---|
date | Tue, 31 May 2016 17:17:05 +0300 |
parents | e85d7bd9345f |
children | ecea2f0d22b6 |
comparison
equal
deleted
inserted
replaced
1714:26f75ea49876 | 1715:ce35c4764409 |
---|---|
21 Patches are signed using one of the | 21 Patches are signed using one of the |
22 <link doc="pgp_keys.xml">PGP public keys</link>. | 22 <link doc="pgp_keys.xml">PGP public keys</link>. |
23 </para> | 23 </para> |
24 | 24 |
25 <security> | 25 <security> |
26 | |
27 <item name="NULL pointer dereference while writing client request body" | |
28 severity="medium" | |
29 advisory="http://mailman.nginx.org/pipermail/nginx-announce/2016/" | |
30 cve="2016-4450" | |
31 good="1.11.1+, 1.10.1+" | |
32 vulnerable="1.3.9-1.11.0"> | |
33 <patch name="patch.2016.write.txt" versions="1.9.13-1.11.0" /> | |
34 <patch name="patch.2016.write2.txt" versions="1.3.9-1.9.12" /> | |
35 </item> | |
26 | 36 |
27 <item name="Invalid pointer dereference in resolver" | 37 <item name="Invalid pointer dereference in resolver" |
28 severity="medium" | 38 severity="medium" |
29 advisory="http://mailman.nginx.org/pipermail/nginx-announce/2016/000169.html" | 39 advisory="http://mailman.nginx.org/pipermail/nginx-announce/2016/000169.html" |
30 cve="2016-0742" | 40 cve="2016-0742" |