[Git][security-tracker-team/security-tracker][master] nginx fixes

[Moritz Muehlenhoff]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
b9a6f5a9 by Moritz Muehlenhoff at 2018-11-06T22:47:30Z
nginx fixes

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5293,16 +5293,19 @@ CVE-2018-16845 [Memory disclosure in the 
ngx_http_mp4_module]
        - nginx <unfixed> (bug #913090)
        NOTE: http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html
        NOTE: https://nginx.org/download/patch.2018.mp4.txt
+       NOTE: http://hg.nginx.org/nginx/rev/fdc19a3289c1
        NOTE: Fixed in 1.15.6, 1.14.1.
 CVE-2018-16844 [Excessive CPU usage in HTTP/2]
        RESERVED
        - nginx <unfixed> (bug #913090)
        NOTE: http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html
+       NOTE: http://hg.nginx.org/nginx/rev/9200b41db765
        NOTE: Fixed in 1.15.6, 1.14.1.
 CVE-2018-16843 [Excessive memory usage in HTTP/2]
        RESERVED
        - nginx <unfixed> (bug #913090)
        NOTE: http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html
+       NOTE: http://hg.nginx.org/nginx/rev/d4448892a294
        NOTE: Fixed in 1.15.6, 1.14.1.
 CVE-2018-16842 (Curl versions 7.14.1 through 7.61.1 are vulnerable to a 
heap-based ...)
        {DSA-4331-1 DLA-1568-1}



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/b9a6f5a9f32b41d4d5614987b6f050ba818a715d

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/b9a6f5a9f32b41d4d5614987b6f050ba818a715d
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits