Lucene search

K
mageiaGentoo FoundationMGASA-2013-0349
HistoryNov 22, 2013 - 11:12 p.m.

Updated nginx packages fix CVE-2013-4547

2013-11-2223:12:56
Gentoo Foundation
advisories.mageia.org
9

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.954 High

EPSS

Percentile

99.3%

Updated nginx package fixes security vulnerability: Ivan Fratric of the Google Security Team discovered a bug in nginx, which might allow an attacker to bypass security restrictions in certain configurations by using a specially crafted request, or might have potential other impact (CVE-2013-4547).

OSVersionArchitecturePackageVersionFilename
Mageia2noarchnginx< 1.0.15-2.1nginx-1.0.15-2.1.mga2
Mageia3noarchnginx< 1.2.9-1.2nginx-1.2.9-1.2.mga3

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.954 High

EPSS

Percentile

99.3%