[FEDORA-2022-12721789aa] Fedora 37: nginx
Severity
High
Affected Packages
1
CVEs
2
Security: processing of a specially crafted mp4 file by the ngx_http_mp4_module
might cause a worker process crash, worker process memory disclosure, or might
have potential other impact (CVE-2022-41741, CVE-2022-41742).
| Package | Affected Version |
|---|---|
 pkg:rpm/fedora/nginx?distro=fedora-37
|
< 1.22.1.1.fc37 |
- ID
- FEDORA-2022-12721789aa
- Severity
- high
- Severity from
- CVE-2022-41741
- URL
- https://bodhi.fedoraproject.org/updates/FEDORA-2022-12721789aa
- Published
-
2022-11-10T22:49:39
(22 months ago) - Modified
-
2022-11-10T22:49:39
(22 months ago) - Rights
- Copyright 2022 Red Hat, Inc.
- Other Advisories
-
-
ALAS-2023-1665
-
ALPINE:CVE-2022-41741
-
ALPINE:CVE-2022-41742
-
DSA-5281-1
-
FEDORA-2022-97de53f202
-
FEDORA-2022-b0f5bc2175
-
FREEBSD:676D4F16-4FB3-11ED-A374-8C164567CA3C
-
MS:CVE-2022-41741
-
MS:CVE-2022-41742
-
NGINX:CVE-2022-41741
-
NGINX:CVE-2022-41742
-
SUSE-SU-2023:0205-1
-
SUSE-SU-2023:0210-1
-
SUSE-SU-2023:0212-1
-
SUSE-SU-2023:0293-1
-
USN-5722-1
-
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/fedora/nginx?distro=fedora-37 | fedora |
nginx
|
< 1.22.1.1.fc37 | fedora-37 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |