Novell Home

CVE-2011-4315

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2011-4315 at MITRE

Description

Heap-based buffer overflow in compression-pointer processing in core/ngx_resolver.c in nginx before 1.0.10 allows remote resolvers to cause a denial of service (daemon crash) or possibly have unspecified other impact via a long response.

NVD CVSS v2 Base Score: 5.0 (AV:N/AC:L/Au:N/C:N/I:N/A:P)

Novell/SUSE information

Novell Bugzilla entry: 731084

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Studio Standard Edition 1.2
WebYaST 1.2
  • nginx-1.0 >= 1.0.0-0.11.1
slms1.2.x86-64
webyast12.ia64
webyast12.x86
studioonsite1.2.x86-64
webyast12.ppc
webyast12.s390x
webyast12.x86-64
SAT Patch Nr: 5464
openSUSE 11.4
  • nginx-0.8 >= 0.8.53-4.9.1

© 2014 Novell