Updated nginx packages fix CVE-2016-4450
Publication date: 02 Jun 2016Modification date: 02 Jun 2016
Type: security
Affected Mageia releases : 5
CVE: CVE-2016-4450
Description
Updated nginx package fixes security vulnerability: A problem was identified in nginx code responsible for saving client request body to a temporary file. A specially crafted request might result in worker process crash due to a NULL pointer dereference while writing client request body to a temporary file (CVE-2016-4450).
References
SRPMS
5/core
- nginx-1.6.2-5.2.mga5