diff options
author | Meenali Gupta <meenali.gupta@windriver.com> | 2023-12-21 03:45:50 +0000 |
---|---|---|
committer | Armin Kuster <akuster808@gmail.com> | 2024-01-07 13:15:11 -0500 |
commit | 8e1f0fa6bfac0e96fedc666fe9066f92c85afb27 (patch) | |
tree | d83eeed37ab8c062c196497de76c373503a0cfe5 /meta-webserver/recipes-httpd/nginx/nginx.inc | |
parent | b0d67900ae9e8911f734c25c0674fe55df8cd188 (diff) | |
download | meta-openembedded-mickledore.tar.gz |
nginx: fix CVE-2023-44487mickledore-nextmickledore
The HTTP/2 protocol allows a denial of service (server resource consumption)
because request cancellation can reset many streams quickly,
as exploited in the wild in August through October 2023.
Signed-off-by: Meenali Gupta <meenali.gupta@windriver.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Diffstat (limited to 'meta-webserver/recipes-httpd/nginx/nginx.inc')
-rw-r--r-- | meta-webserver/recipes-httpd/nginx/nginx.inc | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/meta-webserver/recipes-httpd/nginx/nginx.inc b/meta-webserver/recipes-httpd/nginx/nginx.inc index 8078b7621..72a7bb0c1 100644 --- a/meta-webserver/recipes-httpd/nginx/nginx.inc +++ b/meta-webserver/recipes-httpd/nginx/nginx.inc | |||
@@ -23,6 +23,7 @@ SRC_URI = " \ | |||
23 | file://nginx.service \ | 23 | file://nginx.service \ |
24 | file://nginx-fix-pidfile.patch \ | 24 | file://nginx-fix-pidfile.patch \ |
25 | file://0001-configure-libxslt-conf.patch \ | 25 | file://0001-configure-libxslt-conf.patch \ |
26 | file://CVE-2023-44487.patch \ | ||
26 | " | 27 | " |
27 | 28 | ||
28 | inherit siteinfo update-rc.d useradd systemd | 29 | inherit siteinfo update-rc.d useradd systemd |