logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2016-0746

Description

Use-after-free vulnerability in the resolver in nginx 0.6.18 through 1.8.0 and 1.9.x before 1.9.10 allows remote attackers to cause a denial of service (worker process crash) or possibly have unspecified other impact via a crafted DNS response related to CNAME response processing.


Affected Software


CPE Name Name Version
f5:nginx f5 nginx 1.8.0
f5:nginx f5 nginx 1.9.10
canonical:ubuntu_linux canonical ubuntu linux 14.04
canonical:ubuntu_linux canonical ubuntu linux 15.10
debian:debian_linux debian debian linux 7.0
debian:debian_linux debian debian linux 8.0
debian:debian_linux debian debian linux 9.0
opensuse:leap opensuse leap 42.1
apple:xcode apple xcode 13.0

Related