This bug was fixed in the package nginx - 1.0.5-1ubuntu0.1
---------------
nginx (1.0.5-1ubuntu0.1) oneiric-security; urgency=low
* Security update (closes LP: #956150):
* Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
* Patch to fix 'Heap-based buffer overflow in compression-pointer
processing in core/ngx_resolver.c' (CVE-2011-4315).
-- Thomas Ward <[email protected]> Tue, 12 Jun 2012 12:52:27 -0400
** Changed in: nginx (Ubuntu Oneiric)
Status: Fix Committed => Fix Released
** Changed in: nginx (Ubuntu Natty)
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/956150
Title:
March 15th 2012 Security Advisory
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/nginx/+bug/956150/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
