Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [day] [month] [year] [list]
Date: Fri, 20 Nov 2009 10:36:21 -0500 (EST)
From: Josh Bressers <bressers@...hat.com>
To: oss-security <oss-security@...ts.openwall.com>
Cc: coley <coley@...re.org>
Subject: CVE Assignment nginx

I've not seen a CVE id for this one anywhere:

CVE-2009-3896

engine x (nginx) contains a null pointer dereference flaw in versions
0.1.0-0.8.13 before versions 0.8.14, 0.7.62, 0.6.39 and 0.5.38.

http://nginx.net/
http://marc.info/?l=nginx&m=125692080328141&w=2
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=552035
http://www.debian.org/security/2009/dsa-1920

Thanks

-- 
    JB

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ