SUSE Package Hub - openSUSE-2018-310

Update Info

openSUSE-2018-310

Security update for nginx

Type: security

Severity: moderate

Issued: 2018-03-26

Description:

This update for nginx to version 1.13.9 fixes the following issues:

- CVE-2017-7529: nginx: Integer overflow in nginx range filter module allowed memory disclosure (bsc#1048265)

This update also contains all updates and improvements in 1.13.9 upstream release.

References

CVE: CVE-2017-7529
Bugzilla: 1059685 AUDIT-0: RMT back-end code
Bugzilla: 1057831 unbundle nginx modules
Bugzilla: 1048265 VUL-0: CVE-2017-7529: nginx: Integer overflow in nginx range filter module leading to memory disclosure

Packages

nginx-1.13.9-12.1