[Pkg-nginx-maintainers] Outstanding update for CVE-2023-44487 for stable distributions
Michael Bakker
Michael.Bakker at sapiens.com
Wed Jan 10 12:23:04 GMT 2024
Hello,
I just noticed that according to the Security Bug Tracker for this CVE [1] the specific fix has just been applied to testing and unstable so far. Is it still planned to release an update in all currently supported stable distributions? On the Security Bug Tracker information page for "nginx" [2] it is listed as "unimportant" maybe due to the comment from Nginx maintainers [3] about that CVE. The mail thread is also mentioned in the notes section [1].
Thanks for your time and your work.
Greetings,
Michael
[1] https://security-tracker.debian.org/tracker/CVE-2023-44487
[2] https://security-tracker.debian.org/tracker/source-package/nginx
[3] https://mailman.nginx.org/pipermail/nginx-devel/2023-October/S36Q5HBXR7CAIMPLLPRSSSYR4PCMWILK.html
--
Linux Administrator
Sapiens Germany GmbH
Schäferkampsallee 16
20357 Hamburg
Telefon: +49(0)40 228609 564
E-Mail: michael.bakker at sapiens.com
Geschäftsführer: Ron Al-Dor, Roni Giladi, Patrick Slattery
Amtsgericht Hamburg HRB 169327
More information about the Pkg-nginx-maintainers
mailing list