Nginx_1.10 Yum升级最新版

作者: 5473 分类: Nginx 发布时间: 2019-09-09 15:41 阅读数:169

nginx_1.10版本存在nginx Integer Overflow漏洞
A security issue was identified in nginx range filter. A specially crafted request might result in an integer overflow and incorrect processing of ranges, potentially resulting in sensitive information leak (CVE-2017-7529). When using nginx with standard modules this allows an attacker to obtain a cache file header if a response was returned from cache. In some configurations a cache file header may contain IP address of the backend server or other sensitive information. Besides, with 3rd party modules it is potentially possible that the issue may lead to a denial of service or a disclosure of a worker process memory.





电子邮件地址不会被公开。 必填项已用*标注