Mercurial > hg > nginx-site

diff xml/en/security_advisories.xml @ 2726:a7a36efd10af

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
nginx-1.21.0, nginx-1.20.1
author Maxim Dounin <mdounin@mdounin.ru>
date Tue, 25 May 2021 18:32:30 +0300
parents e35ed485070d
children 0456ea786ef6
line wrap: on
line diff
--- a/xml/en/security_advisories.xml	Tue May 25 12:53:00 2021 +0100
+++ b/xml/en/security_advisories.xml	Tue May 25 18:32:30 2021 +0300
@@ -24,6 +24,14 @@
 
 <security>
 
+<item name="1-byte memory overwrite in resolver"
+      severity="medium"
+      cve="2021-23017"
+      good="1.21.0+, 1.20.1+"
+      vulnerable="0.6.18-1.20.0">
+<patch name="patch.2021.resolver.txt" />
+</item>
+
 <item name="Excessive CPU usage in HTTP/2 with small window updates"
       severity="medium"
       advisory="http://mailman.nginx.org/pipermail/nginx-announce/2019/000249.html"