Advisories ยป MGASA-2016-0216

Updated nginx packages fix CVE-2016-4450

Publication date: 02 Jun 2016
Modification date: 02 Jun 2016
Type: security
Affected Mageia releases : 5
CVE: CVE-2016-4450

Description

Updated nginx package fixes security vulnerability:

A problem was identified in nginx code responsible for saving client request
body to a temporary file.  A specially crafted request might result in worker
process crash due to a NULL pointer dereference while writing client request
body to a temporary file (CVE-2016-4450).
                

References

SRPMS

5/core