USN-7285-2
- Source
- https://ubuntu.com/security/notices/USN-7285-2
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-7285-2.json
- JSON Data
- https://api.osv.dev/v1/vulns/USN-7285-2
- Related
- Published
- 2025-04-01T08:28:19.909789Z
- Modified
- 2025-04-01T08:28:19.909789Z
- Summary
- nginx vulnerability
- Details
-
USN-7285-1 fixed vulnerabilities in nginx. This update provides the corresponding updates for Ubuntu 24.04 LTS.
Original advisory details:
It was discovered that nginx incorrectly handled when multiple server blocks are configured to share the same IP address and port. An attacker could use this issue to use session resumption to bypass client certificate authentication requirements on these servers.
- References
Affected packages
Ubuntu:24.04:LTS / nginx
Package
- Name
- nginx
- Purl
- pkg:deb/ubuntu/nginx@1.24.0-2ubuntu7.3?arch=source&distro=noble
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.24.0-2ubuntu7.3
Affected versions
1.*
1.24.0-1ubuntu1
1.24.0-2ubuntu1
1.24.0-2ubuntu2
1.24.0-2ubuntu3
1.24.0-2ubuntu4
1.24.0-2ubuntu6
1.24.0-2ubuntu7
1.24.0-2ubuntu7.1
Ecosystem specific
{
"availability": "No subscription required",
"binaries": [
{
"binary_version": "1.24.0-2ubuntu7.3",
"binary_name": "libnginx-mod-http-geoip"
},
{
"binary_version": "1.24.0-2ubuntu7.3",
"binary_name": "libnginx-mod-http-geoip-dbgsym"
},
{
"binary_version": "1.24.0-2ubuntu7.3",
"binary_name": "libnginx-mod-http-image-filter"
},
{
"binary_version": "1.24.0-2ubuntu7.3",
"binary_name": "libnginx-mod-http-image-filter-dbgsym"
},
{
"binary_version": "1.24.0-2ubuntu7.3",
"binary_name": "libnginx-mod-http-perl"
},
{
"binary_version": "1.24.0-2ubuntu7.3",
"binary_name": "libnginx-mod-http-perl-dbgsym"
},
{
"binary_version": "1.24.0-2ubuntu7.3",
"binary_name": "libnginx-mod-http-xslt-filter"
},
{
"binary_version": "1.24.0-2ubuntu7.3",
"binary_name": "libnginx-mod-http-xslt-filter-dbgsym"
},
{
"binary_version": "1.24.0-2ubuntu7.3",
"binary_name": "libnginx-mod-mail"
},
{
"binary_version": "1.24.0-2ubuntu7.3",
"binary_name": "libnginx-mod-mail-dbgsym"
},
{
"binary_version": "1.24.0-2ubuntu7.3",
"binary_name": "libnginx-mod-stream"
},
{
"binary_version": "1.24.0-2ubuntu7.3",
"binary_name": "libnginx-mod-stream-dbgsym"
},
{
"binary_version": "1.24.0-2ubuntu7.3",
"binary_name": "libnginx-mod-stream-geoip"
},
{
"binary_version": "1.24.0-2ubuntu7.3",
"binary_name": "libnginx-mod-stream-geoip-dbgsym"
},
{
"binary_version": "1.24.0-2ubuntu7.3",
"binary_name": "nginx"
},
{
"binary_version": "1.24.0-2ubuntu7.3",
"binary_name": "nginx-common"
},
{
"binary_version": "1.24.0-2ubuntu7.3",
"binary_name": "nginx-core"
},
{
"binary_version": "1.24.0-2ubuntu7.3",
"binary_name": "nginx-dbgsym"
},
{
"binary_version": "1.24.0-2ubuntu7.3",
"binary_name": "nginx-dev"
},
{
"binary_version": "1.24.0-2ubuntu7.3",
"binary_name": "nginx-doc"
},
{
"binary_version": "1.24.0-2ubuntu7.3",
"binary_name": "nginx-extras"
},
{
"binary_version": "1.24.0-2ubuntu7.3",
"binary_name": "nginx-full"
},
{
"binary_version": "1.24.0-2ubuntu7.3",
"binary_name": "nginx-light"
}
]
}