Release Info

Advisory: CLSA-2022:1646085758

OS: CentOS 8.5 ELS

Public date: 2022-02-28 00:00:00

Project: nginx

Version: 1.14.1-9.module_el8.5.0+2012+af250afe.tuxcare.els1

Errata link: https://errata.cloudlinux.com/centos8.5-els/CLSA-2022-1646085758.html

Changelog

- CVE-2021-23017: Off-by-one in ngx_resolver_copy() when labels are followed by a pointer to a root domain name

Update

Update command: dnf update nginx*

Packages list

nginx-mod-http-xslt-filter-1.14.1-9.module_el8.5.0+2012+af250afe.tuxcare.els1.x86_64.rpm nginx-mod-http-perl-1.14.1-9.module_el8.5.0+2012+af250afe.tuxcare.els1.x86_64.rpm nginx-mod-stream-1.14.1-9.module_el8.5.0+2012+af250afe.tuxcare.els1.x86_64.rpm nginx-all-modules-1.14.1-9.module_el8.5.0+2012+af250afe.tuxcare.els1.noarch.rpm nginx-mod-http-image-filter-1.14.1-9.module_el8.5.0+2012+af250afe.tuxcare.els1.x86_64.rpm nginx-filesystem-1.14.1-9.module_el8.5.0+2012+af250afe.tuxcare.els1.noarch.rpm nginx-mod-mail-1.14.1-9.module_el8.5.0+2012+af250afe.tuxcare.els1.x86_64.rpm nginx-1.14.1-9.module_el8.5.0+2012+af250afe.tuxcare.els1.x86_64.rpm

CVEs

CVE-2021-23017