Mandriva Update For Nginx MDVSA-2012:043 (nginx) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

A vulnerability has been found and corrected in nginx: Specially crafted backend response could result in sensitive information leak (CVE-2012-1180). The updated packages have been patched to correct this issue.

Affected

nginx on Mandriva Linux 2011.0, Mandriva Linux 2010.1

Severity

Classification

CVE CVE-2012-1180

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Mandrake Security Advisory MDVSA-2009:048 (epiphany)
Mandrake Security Advisory MDVSA-2009:213 (wxgtk)
Mandrake Security Advisory MDVSA-2009:039 (gedit)
Mandrake Security Advisory MDVSA-2009:208 (libgadu)
Mandrake Security Advisory MDVSA-2009:172 (dhcp)

Mandriva Update for nginx MDVSA-2012:043 (nginx)

Take action and discover your vulnerabilities