SuSE Update For Nginx OpenSUSE-SU-2012:0237-1 (nginx) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

A flaw in the custom DNS resolver of nginx could lead to a heap based buffer overflow which could potentially allow attackers to execute arbitrary code or to cause a Denial of Service (bnc#731084, CVE-2011-4315). Special Instructions and Notes: Please reboot the system after installing this update.

Affected

nginx on openSUSE 11.4

Severity

Classification

CVE CVE-2011-4315

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

SLES10: Security update for ClamAV
SLES10: Security update for net-snmp
SLES10: Security update for OpenSSL
SLES10: Security update for expat
SLES10: Security update for Emacs

SuSE Update for nginx openSUSE-SU-2012:0237-1 (nginx)

Take action and discover your vulnerabilities