nginx:1.16 security update

エラータID: AXSA:2021-2307:01

Release date: 
Tuesday, August 10, 2021 - 07:37
Subject: 
nginx:1.16 security update
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
High
Description: 

nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.

Security Fix(es):

* nginx: Off-by-one in ngx_resolver_copy() when labels are followed by a pointer to a root domain name (CVE-2021-23017)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2021-23017
A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

Modularity name: [security-high]nginx
Stream name: 1.16

Solution: 

Update packages.

CVEs: 
CVE-2021-23017
A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
Additional Info: 

N/A

Download: 

SRPMS
  1. nginx-1.16.1-2.module+el8+1281+1a6c5385.1.ML.1.src.rpm
    MD5: fa847cc0f6c5f56c975ce7bc08560103
    SHA-256: 313389ae58eb5707686fe83f0095a982b36b2e8f9e348fa88236b0900ec23bfe
    Size: 1.03 MB

Asianux Server 8 for x86_64
  1. nginx-1.16.1-2.module+el8+1281+1a6c5385.1.ML.1.x86_64.rpm
    MD5: f67b6ab7ebe799c0af779d46fdd0e50a
    SHA-256: b9ec1e1f34973640f6491af7fc01b5083cb5613a0e38c7e51818588a9357f6af
    Size: 574.97 kB
  2. nginx-all-modules-1.16.1-2.module+el8+1281+1a6c5385.1.ML.1.noarch.rpm
    MD5: 85533fd27c68dafac126bae651f3d5c8
    SHA-256: 57bb2f4c050397255e93f9096836f87602424a1da475d15e04bf7980a2343997
    Size: 23.09 kB
  3. nginx-debugsource-1.16.1-2.module+el8+1281+1a6c5385.1.ML.1.x86_64.rpm
    MD5: c5193edb480897d28da6801e58a840c3
    SHA-256: a6789c774b659f4c39c71cfa2f568b968e6ec13069e6403e9d4475459e7cab92
    Size: 666.09 kB
  4. nginx-filesystem-1.16.1-2.module+el8+1281+1a6c5385.1.ML.1.noarch.rpm
    MD5: 966070716291ed1cc5bcc8772c59a19f
    SHA-256: 18371293947e49757a631d67e04ce91fd2aa05fa85b81662457c030439f254a7
    Size: 24.05 kB
  5. nginx-mod-http-image-filter-1.16.1-2.module+el8+1281+1a6c5385.1.ML.1.x86_64.rpm
    MD5: d4c3316b557362c949ef0045d3f50233
    SHA-256: cf94bc5e1f26c94bc67ddc912c7d68afd7fe18ada90266f8711aac1544f74651
    Size: 34.45 kB
  6. nginx-mod-http-perl-1.16.1-2.module+el8+1281+1a6c5385.1.ML.1.x86_64.rpm
    MD5: fc61be64995a282fe1007ecde0534ad1
    SHA-256: 69224d0a7dc242186f3932ca5cc6298a45092d9b92a78f2889207333ea098412
    Size: 45.23 kB
  7. nginx-mod-http-xslt-filter-1.16.1-2.module+el8+1281+1a6c5385.1.ML.1.x86_64.rpm
    MD5: cd8255ae7784411dffd01e6d5882625a
    SHA-256: aecb5c5e54fd31ed38dcb5b8a63274fd15ccebee3286c2743dc2f5c6445e8188
    Size: 33.12 kB
  8. nginx-mod-mail-1.16.1-2.module+el8+1281+1a6c5385.1.ML.1.x86_64.rpm
    MD5: ada7ae68e1c6ac2b79ba063f5f9a7b09
    SHA-256: eae30128ebd4e503459b200e83afb868b6623c83aec6b10a5b0a2bded82f3e9f
    Size: 63.54 kB
  9. nginx-mod-stream-1.16.1-2.module+el8+1281+1a6c5385.1.ML.1.x86_64.rpm
    MD5: 366b0ba318396918bdde57bf0898fd9f
    SHA-256: f4a6fa2e0c463350d599f1b581a17b34dae8110e4d8ce157923ee7f4fd6dcd12
    Size: 89.82 kB