MGASA-2013-0160

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2013-0160.html

Import Source

https://advisories.mageia.org/MGASA-2013-0160.json

JSON Data

https://api.osv.dev/v1/vulns/MGASA-2013-0160

Related

CVE-2013-2070

Published

2013-06-06T12:24:33Z

Modified

2013-06-18T15:55:08Z

Summary

Updated nginx package fixes security vulnerability

Details

A security problem related to CVE-2013-2028 was identified, affecting some previous nginx versions if proxy_pass to untrusted upstream HTTP servers is used. The problem may lead to a denial of service or a disclosure of a worker process memory on a specially crafted response from an upstream proxied server (CVE-2013-2070).

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:3 / nginx

Package

Name: nginx
Purl: pkg:rpm/mageia/nginx?distro=mageia-3

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.2.9-1.1.mga3

Ecosystem specific

{
    "section": "core"
}