Per the notes on the CVE tracker:
sarnold> Backporting this fix is non-trivial and may break deployed
applications. Someone who really wanted this could use stunnel as a
work-around until 16.04 LTS is released.
This applies to Precise, Trusty, and Vivid.
** Changed in: nginx (Ubuntu Precise)
Status: Confirmed => Won't Fix
** Changed in: nginx (Ubuntu Trusty)
Status: Confirmed => Won't Fix
** Changed in: nginx (Ubuntu Vivid)
Status: Confirmed => Won't Fix
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to nginx in Ubuntu.
https://bugs.launchpad.net/bugs/1098654
Title:
nginx vulnerable to MITM Attack [CVE-2011-4968]
To manage notifications about this bug go to:
https://bugs.launchpad.net/nginx/+bug/1098654/+subscriptions
--
Ubuntu-server-bugs mailing list
[email protected]
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
