nginx-mainline

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description Lightweight HTTP server and IMAP/POP3 proxy server, mainline release
Version 1.13.9-1 [community-testing]
1.13.7-2 [community]

Resolved

Group Affected Fixed Severity Status Ticket
AVG-346 1.13.2-1 1.13.3-1 High Fixed
AVG-139 1.11.8-1 1.11.8-2 High Fixed FS#52547
Issue Group Severity Remote Type Description
CVE-2017-7529 AVG-346 High Yes Information disclosure
A security issue was identified in the range filter module of nginx < 1.13.3. A specially crafted request might result in an integer overflow and incorrect...
CVE-2016-1247 AVG-139 High No Privilege escalation
A symlink attack vulnerability was discovered in nginx. An attacker who could already run commands under the nginx user id could use this access to append...

Advisories

Date Advisory Group Severity Description
12 Jul 2017 ASA-201707-12 AVG-346 High information disclosure
15 Jan 2017 ASA-201701-24 AVG-139 High privilege escalation