nginx is prone to an information-disclosure vulnerability. Attackers can exploit this issue to harvest sensitive information that may lead to further attacks.

Updates are available. Please see the references for more information.

• http://nginx.org/
• http://seclists.org/bugtraq/2012/Mar/65
• http://trac.nginx.org/nginx/changeset/4530/nginx
• http://www.securityfocus.com/bid/52578
• https://bugzilla.redhat.com/show_bug.cgi?id=803856

---

Updated on 2015-03-25