Le Wed, Mar 25, 2026 at 12:11:31PM +0100, Mark Patruck a écrit :
> Update to www/nginx 1.28.3 released yesterday fixing
>
> - buffer overflow vulnerability in the ngx_http_dav_module
> (CVE-2026-27654)
>
> - buffer overflow vulnerabilities in the ngx_http_mp4_module
> (CVE-2026-27784, CVE-2026-32647)
>
> - mail session authentication vulnerabilities
> (CVE-2026-27651, CVE-2026-28753)
>
> - OCSP result bypass vulnerability in stream
> (CVE-2026-28755)
i just made the same diff before seeing yours.. ok with me.
No comments:
Post a Comment