nginx:1.20 security update

エラータID: AXSA:2023-6513:01

Release date: 
Thursday, October 19, 2023 - 10:19
Subject: 
nginx:1.20 security update
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Moderate
Description: 

nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.

Security Fix(es):

* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2023-44487
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

Modularity name: "nginx"
Stream name: "1.20"

Solution: 

Update packages.

CVEs: 
CVE-2023-44487
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
Additional Info: 

N/A

Download: 

SRPMS
  1. nginx-1.20.1-1.module+el8+1669+c1f4413f.1.ML.1.src.rpm
    MD5: 1b0ae513f9c7e811d5333aa9d595fb24
    SHA-256: 78d311efb0442a3f7fa92b701a22f382e85a6cba45ab31517e46e02f26242761
    Size: 1.06 MB

Asianux Server 8 for x86_64
  1. nginx-1.20.1-1.module+el8+1669+c1f4413f.1.ML.1.x86_64.rpm
    MD5: 3b30a795f488d39f31d508f53a439244
    SHA-256: 0fd10dbc7c151028855f215e71df23621fe00be66a077804f40c04e350367b02
    Size: 592.56 kB
  2. nginx-all-modules-1.20.1-1.module+el8+1669+c1f4413f.1.ML.1.noarch.rpm
    MD5: 09306f5c14cbf18a40add65682284fda
    SHA-256: 8c05d97ccc12856a025f9e0fd47961901c63ab217c7292b1d4d244331a4a82fd
    Size: 24.11 kB
  3. nginx-debugsource-1.20.1-1.module+el8+1669+c1f4413f.1.ML.1.x86_64.rpm
    MD5: c5530b54dd66d97e8c6f2400d6221d0b
    SHA-256: 67a21261e4c9b61ffe338f8072243cb88e6aa1787ce3d2fde9790bece97425a3
    Size: 682.68 kB
  4. nginx-filesystem-1.20.1-1.module+el8+1669+c1f4413f.1.ML.1.noarch.rpm
    MD5: 438ff4f6c0059ab59c75a47874f40c76
    SHA-256: 32dfa261b7c02ce646df83b2f98f32264e4ae0ba153f1503da0b77a952142598
    Size: 25.08 kB
  5. nginx-mod-devel-1.20.1-1.module+el8+1669+c1f4413f.1.ML.1.x86_64.rpm
    MD5: 9f66c4f36071119d0101abe8a047e810
    SHA-256: 85b1cccee83e3340664c4ea972f800be35643756ab27b743e93ed94b105a819a
    Size: 919.68 kB
  6. nginx-mod-http-image-filter-1.20.1-1.module+el8+1669+c1f4413f.1.ML.1.x86_64.rpm
    MD5: 462223517971e5233ca37e0fc7c6ce33
    SHA-256: 9b30b09395d88022ab12c17bb7d9a4860bcb7b7d9704fcb13094e7a02d1843ec
    Size: 35.50 kB
  7. nginx-mod-http-perl-1.20.1-1.module+el8+1669+c1f4413f.1.ML.1.x86_64.rpm
    MD5: ef9ed4f4f6a4a27ec6a3545aba6e1e92
    SHA-256: 994c3b94c29e0ac060a1eb83d7644e0db65ab26204909cd769531e181d193569
    Size: 47.32 kB
  8. nginx-mod-http-xslt-filter-1.20.1-1.module+el8+1669+c1f4413f.1.ML.1.x86_64.rpm
    MD5: 1c8723a7ae8ce04b677b7dd476fd3cfd
    SHA-256: 2b99fc4f699a2ba385943472ab5456b8584701ff8007b304a7d3424f567485f0
    Size: 34.14 kB
  9. nginx-mod-mail-1.20.1-1.module+el8+1669+c1f4413f.1.ML.1.x86_64.rpm
    MD5: 5ab349b1b45561dc4c5e318bd60bf0ef
    SHA-256: a9323791c66de64821668373181878f0f07bd7b035794e573ad44574770193fd
    Size: 66.97 kB
  10. nginx-mod-stream-1.20.1-1.module+el8+1669+c1f4413f.1.ML.1.x86_64.rpm
    MD5: 5badbc63ecccb590f08490b593f56095
    SHA-256: 939e574693539241819679ffd19c43f1d7e517e6ec9358475fbf4a115f5fac30
    Size: 92.27 kB