Ubuntu
nginx package

  1. Precise (12.04)
  2. Bug #956150
  3. Comment #25

Comment 25 for bug 956150

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package nginx - 0.7.65-1ubuntu2.3

---------------
nginx (0.7.65-1ubuntu2.3) lucid-security; urgency=low

  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).
 -- Thomas Ward <email address hidden> Tue, 12 Jun 2012 12:37:49 -0400