logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2016-4450

Description

os/unix/ngx_files.c in nginx before 1.10.1 and 1.11.x before 1.11.1 allows remote attackers to cause a denial of service (NULL pointer dereference and worker process crash) via a crafted request, involving writing a client request body to a temporary file.


Affected Software


CPE Name Name Version
canonical:ubuntu_linux canonical ubuntu linux 14.04
canonical:ubuntu_linux canonical ubuntu linux 15.10
canonical:ubuntu_linux canonical ubuntu linux 16.04
f5:nginx f5 nginx 1.10.1
f5:nginx f5 nginx 1.11.0
debian:debian_linux debian debian linux 8.0

Related