Mercurial > hg > nginx-site

diff xml/en/security_advisories.xml @ 2010:18ff9016b82f

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
nginx-1.13.3, nginx-1.12.1
author Maxim Dounin <mdounin@mdounin.ru>
date Tue, 11 Jul 2017 18:40:50 +0300
parents ecea2f0d22b6
children cf8d95bfcf72
line wrap: on
line diff
--- a/xml/en/security_advisories.xml	Wed Jul 05 15:30:48 2017 +0300
+++ b/xml/en/security_advisories.xml	Tue Jul 11 18:40:50 2017 +0300
@@ -24,6 +24,14 @@
 
 <security>
 
+<item name="Integer overflow in the range filter"
+      severity="medium"
+      cve="2017-7529"
+      good="1.13.3+, 1.12.1+"
+      vulnerable="0.5.6-1.13.2">
+<patch name="patch.2017.ranges.txt" />
+</item>
+
 <item name="NULL pointer dereference while writing client request body"
       severity="medium"
       advisory="http://mailman.nginx.org/pipermail/nginx-announce/2016/000179.html"