Lucene search

K
osvGoogleOSV:ALSA-2021:2259
HistoryJun 07, 2021 - 10:02 a.m.

Important: nginx:1.18 security update

2021-06-0710:02:53
Google
osv.dev
11
nginx
web server
http
proxy server
high concurrency
performance
low memory usage
cve-2021-23017
security update

AI Score

7.7

Confidence

High

EPSS

0.316

Percentile

97.1%

nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.

Security Fix(es):

  • nginx: Off-by-one in ngx_resolver_copy() when labels are followed by a pointer to a root domain name (CVE-2021-23017)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.