VUL-0: nginx: heap overflow
A flaw in the custom DNS resolver of nginx could lead to a
heap based buffer overflow which could potentially allow
attackers to execute arbitrary code or to cause a Denial of
Service (bnc#731084, CVE-2011-4315).
-
Submitted by
Adrian Schröter (adrianSuSE)
- Version 5467
Fixed bugs
bnc#731084
VUL-0: CVE-2011-4315: nginx: heap overflow
CVE#CVE-2011-4315
Heap-based buffer overflow in compression-pointer processing in core/ngx_resolver.c in nginx before 1.0.10 allows remote resolvers to cause a denial of service (daemon crash) or possibly have unspecified other impact via a long response.
