ALSA-2021:2259

[ALSA-2021:2259] Important: nginx:1.18 security update

Type:

security

Severity:

important

Release date:

2021-06-07

Description:

nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. 

Security Fix(es):

* nginx: Off-by-one in ngx_resolver_copy() when labels are followed by a pointer to a root domain name (CVE-2021-23017)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	nginx-mod-http-perl-1.18.0-3.module_el8.4.0+2472+f736ed63.1.alma.aarch64.rpm	45ad9c7189ecbace7a0df0f28ae6399b9250181d8aaeee3d154aa00160f20932
aarch64	nginx-mod-http-xslt-filter-1.18.0-3.module_el8.4.0+2472+f736ed63.1.alma.aarch64.rpm	89a6fc5632d2c1d0fe6ceb7fcf4d25edb1c175ecabd2de3f651071915ab8613b
aarch64	nginx-mod-mail-1.18.0-3.module_el8.4.0+2472+f736ed63.1.alma.aarch64.rpm	89e181ac956bacee78ab548a166023bc3e2f74996b38e3a4bbaa35673428f4d7
aarch64	nginx-mod-http-image-filter-1.18.0-3.module_el8.4.0+2472+f736ed63.1.alma.aarch64.rpm	995c8c7a06c71361fca85518506a099124f90ce22a0f3ed6b3ce681e3536e643
aarch64	nginx-1.18.0-3.module_el8.4.0+2472+f736ed63.1.alma.aarch64.rpm	ae3ef235e499d9b2baad443d333bd27fd233bb4f1f36c5cc6767fda38a7baec1
aarch64	nginx-mod-stream-1.18.0-3.module_el8.4.0+2472+f736ed63.1.alma.aarch64.rpm	dbe5e967c3cb7cac5e82ef069d08a87129fa6922f2d256cb0947ff10f949ef0a
noarch	nginx-filesystem-1.18.0-3.module_el8.4.0+2472+f736ed63.1.alma.noarch.rpm	3b3a12dbacf3dba4cd3f8f5087476831af24532e734c27dce1c16ba3e6ae5f31
noarch	nginx-all-modules-1.18.0-3.module_el8.4.0+2472+f736ed63.1.alma.noarch.rpm	86b8abcb6364198c147acf1d05d8daad5fd47cd07d0660bb84f1b406b240438d
ppc64le	nginx-1.18.0-3.module_el8.5.0+36+48437aab.1.alma.ppc64le.rpm	016bcd914d32fa73af47db135e665e4737d07146fb0d03723b384fb9a88ba003
ppc64le	nginx-mod-stream-1.18.0-3.module_el8.5.0+36+48437aab.1.alma.ppc64le.rpm	318b1de21d8474f299220a49ee3be72345df8c7759f9ea668da20b3f5cec6725
ppc64le	nginx-mod-http-xslt-filter-1.18.0-3.module_el8.5.0+36+48437aab.1.alma.ppc64le.rpm	67b76474f2a21a132292703fa17f6631df80896f965e23d2ec07fcf285d6d77d
ppc64le	nginx-mod-mail-1.18.0-3.module_el8.5.0+36+48437aab.1.alma.ppc64le.rpm	767abcc937688b5cb4d0b547c98a45d906f85e21fac8b46ea047b0acfb77a71a
ppc64le	nginx-mod-http-perl-1.18.0-3.module_el8.5.0+36+48437aab.1.alma.ppc64le.rpm	ceafe5c3ed24d427017a03b49a483dab5d9cf144e6ecc7ffbd4fa6c1b4c749a0
ppc64le	nginx-mod-http-image-filter-1.18.0-3.module_el8.5.0+36+48437aab.1.alma.ppc64le.rpm	d6afd27c93ba253a81e4cf39e507c1598d85b2a5280e3a81e0086dbef62273ea
x86_64	nginx-mod-stream-1.18.0-3.module_el8.4.0+2472+f736ed63.1.alma.x86_64.rpm	276509a840d04e22ff7874b0fdea6838dbbf2f56911e007507b0a58609aae710
x86_64	nginx-mod-http-perl-1.18.0-3.module_el8.4.0+2472+f736ed63.1.alma.x86_64.rpm	28de080598e0e9a90cedb56a1eefa430b8295db19733a375abdc2d0cb6450aff
x86_64	nginx-1.18.0-3.module_el8.4.0+2472+f736ed63.1.alma.x86_64.rpm	53e1c1d546596e2b8b4a34cfbbaaa39498a5ecbc66336600e08a45fc4f4d1543
x86_64	nginx-mod-mail-1.18.0-3.module_el8.4.0+2472+f736ed63.1.alma.x86_64.rpm	db9603d72d59e9be55a1859f649b3c464350bdb4d52f0a097af6a2ae62fc54be
x86_64	nginx-mod-http-xslt-filter-1.18.0-3.module_el8.4.0+2472+f736ed63.1.alma.x86_64.rpm	e7985bd9c671f2575db263dbea3a39e1af6f1da9eeb90e0bd0e2c6a7e5b62f01
x86_64	nginx-mod-http-image-filter-1.18.0-3.module_el8.4.0+2472+f736ed63.1.alma.x86_64.rpm	e8caf658ba856221f714d346865dbbcdc95b1a393feda12bdbd1b46348e18899

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.