Alerts This Week
Warning Icon 1 485
Alerts This Week
Warning Icon 1 485

Fedora 23: FEDORA-2016-ed6281346e Urgent: Nginx DNS Resolution Problems

fedora
Calendar Grey January 30, 2016
Dist Fedora Esm H88
Latest Fedora patch for nginx resolves several significant vulnerabilities related to the resolver feature.
- update to upstream release 1.8.1 - CVE-2016-0747: Insufficient limits of CNAME resolution in resolver - CVE-2016-0746: Use-after-free during CNAME response processing in resolver...

Summary

Nginx is a web server and a reverse proxy server for HTTP, SMTP, POP3 and

IMAP protocols, with a strong focus on high concurrency, performance and low

memory usage.

Update Information:

- update to upstream release 1.8.1 - CVE-2016-0747: Insufficient limits of CNAME resolution in resolver - CVE-2016-0746: Use-after-free during CNAME response processing in resolver - CVE-2016-0742: Invalid pointer dereference in resolver

Change Log

References

Fedora Update Notification FEDORA-2016-fd3428577d 2016-01-30 14:54:08.577538
Name : nginx Product : Fedora 23 Version : 1.8.1 Release : 1.fc23 URL : http://nginx.org/ Summary : A high performance web server and reverse proxy server Description : Nginx is a web server and a reverse proxy server for HTTP, SMTP, POP3 and IMAP protocols, with a strong focus on high concurrency, performance and low memory usage.

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update nginx' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: nginx
Product: Fedora 23
Version: 1.8.1
Release: 1.fc23
Summary: A high performance web server and reverse proxy server

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here