tag 868109 pending
thanks
Hello,
Bug #868109 reported by you has been fixed in the Git repository. You can
see the changelog below, and you can check the diff of the fix at:
https://anonscm.debian.org/cgit/pkg-nginx/nginx.git/commit/?id=47af479
---
commit 47af4791200c265e43523d7232ffdfc3de3377dd
Author: Chris Lamb <[email protected]>
Date: Thu Jul 13 09:06:49 2017 +0100
Import Debian changes 1.2.1-2.2+wheezy4+deb7u1
nginx (1.2.1-2.2+wheezy4+deb7u1) wheezy-security; urgency=high
* CVE-2017-7529: Fix an vulnerability in the range filter. A specially
crafted request could have resulted in an integer overflow and incorrect
processing of ranges, potentially resulting in sensitive information
leak. (Closes: #868109)
diff --git a/debian/changelog b/debian/changelog
index 2c76c12..5a07c41 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,12 @@
+nginx (1.2.1-2.2+wheezy4+deb7u1) wheezy-security; urgency=high
+
+ * CVE-2017-7529: Fix an vulnerability in the range filter. A specially
+ crafted request could have resulted in an integer overflow and incorrect
+ processing of ranges, potentially resulting in sensitive information
+ leak. (Closes: #868109)
+
+ -- Chris Lamb <[email protected]> Thu, 13 Jul 2017 09:06:49 +0100
+
nginx (1.2.1-2.2+wheezy4) wheezy-security; urgency=high
[ Christos Trochalakis ]