Achọpụtara okwu atọ na sava weebụ nginx (CVE-2019-9511, CVE-2019-9513, CVE-2019-9516) nke butere oke oriri ebe nchekwa mgbe ị na-eji modul. ngx_http_v2_module ma mejuputa ya site na HTTP/2 protocol. Nsogbu ahụ na-emetụta nsụgharị sitere na 1.9.5 ruo 1.17.2. Emere ndozi na nginx 1.16.1 (alaka kwụsiri ike) na 1.17.3 (isi). Jonathan Looney nke Netflix chọpụtara nsogbu ndị a.
Mwepụta 1.17.3 gụnyere ndozi abụọ ọzọ:
- Idozi: mgbe ị na-eji mkpakọ, ozi "efu size buf" nwere ike ịpụta na ndekọ; Ahụhụ ahụ pụtara na 1.17.2.
- Idozi: Mmejọ nkewa nwere ike ime na usoro onye ọrụ mgbe ị na-eji ntuziaka onye nrụzi na proxy SMTP.
isi: linux.org.ru