Package nginx updated to version 1.4.7-alt1.M70P.1 for branch t7 in task 117972.

Published: 2014-03-28

BDU:2015-00636

Уязвимость программного обеспечения nginx, позволяющая удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации

Severity: MEDIUM (5.1)

References:

CVE-2014-0133
ID:183494

Published: 2014-03-28
Modified: 2024-11-21

CVE-2014-0133

Heap-based buffer overflow in the SPDY implementation in nginx 1.3.15 before 1.4.7 and 1.5.x before 1.5.12 allows remote attackers to execute arbitrary code via a crafted request.

Severity: HIGH (7.5)

References:

openSUSE-SU-2014:0450
openSUSE-SU-2014:0450
[nginx-announce] 20140318 nginx security advisory (CVE-2014-0133)
[nginx-announce] 20140318 nginx security advisory (CVE-2014-0133)
66537
66537

Забыли stat.xsl

CVE-2014-0133

Version: 2.1.0

Package nginx update in t7 on 2014-04-10

ALT-PU-2014-1466-1

Closed vulnerabilities

BDU:2015-00636

CVE-2014-0133

Closed bugs

Bug #29917

Bug #29977