Specially crafted request URI permits security restriction bypass [CVE-2013-4547]
Bug #1253691 reported by
Robie Basak
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
nginx (Debian) |
Fix Released
|
Unknown
|
|||
nginx (Ubuntu) |
Fix Released
|
High
|
Unassigned | ||
Precise |
Fix Released
|
High
|
Unassigned | ||
Quantal |
Fix Released
|
High
|
Unassigned | ||
Raring |
Fix Released
|
High
|
Unassigned | ||
Saucy |
Fix Released
|
High
|
Unassigned | ||
Trusty |
Fix Released
|
High
|
Unassigned |
Bug Description
CVE-2013-4547
Upstream report: http://
Upstream patch: http://
Changed in nginx (Debian): | |
status: | Unknown → Fix Released |
summary: |
Specially crafted request URI permits security restriction bypass + [CVE-2013-4547] |
To post a comment you must log in.
For records:
The problem affects nginx 0.8.41 - 1.5.6.
The problem is fixed in nginx 1.5.7, 1.4.4.
------
Precise, Quantal, Raring, Saucy, and Trusty are currently affected.