AVG-138 log

Package nginx
Status Fixed
Severity High
Type privilege escalation
Affected 1.10.2-2
Fixed 1.10.2-3
Current 1.26.2-1 [extra]
Ticket FS#52546
Created Sat Jan 14 16:47:08 2017
Issue Severity Remote Type Description
CVE-2016-1247 High No Privilege escalation
A symlink attack vulnerability was discovered in nginx. An attacker who could already run commands under the nginx user id could use this access to append...
Date Advisory Package Type
15 Jan 2017 ASA-201701-23 nginx privilege escalation
References
https://legalhackers.com/advisories/Nginx-Exploit-Deb-Root-PrivEsc-CVE-2016-1247.html