[FEDORA-2022-12721789aa] Fedora 37: nginx
Severity
High
Affected Packages
1
CVEs
2
Security: processing of a specially crafted mp4 file by the ngx_http_mp4_module
might cause a worker process crash, worker process memory disclosure, or might
have potential other impact (CVE-2022-41741, CVE-2022-41742).
Package | Affected Version |
---|---|
pkg:rpm/fedora/nginx?distro=fedora-37 | < 1.22.1.1.fc37 |
- ID
- FEDORA-2022-12721789aa
- Severity
- high
- Severity from
- CVE-2022-41741
- URL
- https://bodhi.fedoraproject.org/updates/FEDORA-2022-12721789aa
- Published
-
2022-11-10T22:49:39
(22 months ago) - Modified
-
2022-11-10T22:49:39
(22 months ago) - Rights
- Copyright 2022 Red Hat, Inc.
- Other Advisories
-
- ALAS-2023-1665
- ALPINE:CVE-2022-41741
- ALPINE:CVE-2022-41742
- DSA-5281-1
- FEDORA-2022-97de53f202
- FEDORA-2022-b0f5bc2175
- FREEBSD:676D4F16-4FB3-11ED-A374-8C164567CA3C
- MS:CVE-2022-41741
- MS:CVE-2022-41742
- NGINX:CVE-2022-41741
- NGINX:CVE-2022-41742
- SUSE-SU-2023:0205-1
- SUSE-SU-2023:0210-1
- SUSE-SU-2023:0212-1
- SUSE-SU-2023:0293-1
- USN-5722-1
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/fedora/nginx?distro=fedora-37 | fedora | nginx | < 1.22.1.1.fc37 | fedora-37 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |