VYPR

rpm package

opensuse/nginx&distro=openSUSE Leap 15.4

pkg:rpm/opensuse/nginx&distro=openSUSE%20Leap%2015.4

Vulnerabilities (3)

  • CVE-2022-41742Oct 19, 2022
    affected < 1.19.8-150300.3.12.1fixed 1.19.8-150300.3.12.1

    NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1 and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module ngx_http_mp4_module that might allow a local attacker to cause a worker process

  • CVE-2022-41741Oct 19, 2022
    affected < 1.19.8-150300.3.12.1fixed 1.19.8-150300.3.12.1

    NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before versions R2 P1 and R1 P1, and NGINX Plus before versions R27 P1 and R26 P1 have a vulnerability in the module ngx_http_mp4_module that might allow a local attacker to corrupt NGINX worker m

  • CVE-2021-3618Mar 23, 2022
    affected < 1.19.8-150300.3.9.1fixed 1.19.8-150300.3.9.1

    ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can re