Nyaya nhatu dzakaonekwa munginx web server (CVE-2019-9511, CVE-2019-9513, CVE-2019-9516) izvo zvakakonzera kuwedzeredza ndangariro kushandisa kana uchishandisa module. ngx_http_v2_module uye yakaitwa kubva kuHTTP/2 protocol. Dambudziko rinokanganisa shanduro kubva 1.9.5 kusvika 1.17.2. Kugadziriswa kwakaitwa ku nginx 1.16.1 (bazi rakagadzikana) uye 1.17.3 (mainstream). Matambudziko akawanikwa naJonathan Looney weNetflix.
Kuburitswa 1.17.3 kunosanganisira mamwe maviri ekugadzirisa:
- Gadzirisa: kana uchishandisa compression, "zero size buf" mameseji anogona kuoneka mumatanda; Iyo bug yakaonekwa muna 1.17.2.
- Gadzirisa: Kukanganisa kwechikamu kunogona kuitika mukuita kwevashandi kana uchishandisa iyo inogadzirisa kuraira mune SMTP proxy.
Source: linux.org.ru