Overview
Request 895436 accepted
- Update to 1.20.1
* https://nginx.org/en/CHANGES
* 1-byte memory overwrite might occur during DNS server response processing
if the "resolver" directive was used, allowing an attacker who is able to
forge UDP packets from the DNS server to cause worker process crash or,
potentially, arbitrary code execution (CVE-2021-23017).
- Created by 13ilya
- In state accepted
- 5 package maintainers
Loading...
Login required, please
login
in order to comment
Request History
13ilya created request
- Update to 1.20.1
* https://nginx.org/en/CHANGES
* 1-byte memory overwrite might occur during DNS server response processing
if the "resolver" directive was used, allowing an attacker who is able to
forge UDP packets from the DNS server to cause worker process crash or,
potentially, arbitrary code execution (CVE-2021-23017).
13ilya accepted request
