ELSA-2023-5712

ULN >
Oracle Linux Errata repository >
ELSA-2023-5712

ELSA-2023-5712 - nginx:1.20 security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2023-10-17

Description

[1:1.20.1-1.0.1.1]
- Resolves: RHEL-12732 - nginx:1.20/nginx: HTTP/2: Multiple HTTP/2 enabled web
servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)

Related CVEs

CVE-2023-44487

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	nginx-1.20.1-1.0.1.module+el8.8.0+21179+be6d61e7.1.src.rpm	7ef34e69cdb688387df216e6e5508c97744c762411e0f419030d8544bac9f0b0	-	ol8_aarch64_appstream
	nginx-1.20.1-1.0.1.module+el8.8.0+21179+be6d61e7.1.aarch64.rpm	01c4972cb0f5cfd4b86cb7e581bbf7d688f6bb34f5695687b33c400980c2d91b	-	ol8_aarch64_appstream
	nginx-all-modules-1.20.1-1.0.1.module+el8.8.0+21179+be6d61e7.1.noarch.rpm	15aec897ffad85d8b90f338c262fed7cde13cd61474a431466c5fd9181a84059	-	ol8_aarch64_appstream
	nginx-filesystem-1.20.1-1.0.1.module+el8.8.0+21179+be6d61e7.1.noarch.rpm	a2abeaee8c2aa367d295a2b5c53a3d560c2e9da328557a05c82616c8061cff03	-	ol8_aarch64_appstream
	nginx-mod-devel-1.20.1-1.0.1.module+el8.8.0+21179+be6d61e7.1.aarch64.rpm	7c0f59064398d28451149850832caa3fc837942ae185a26462f3f4f41d02eb66	-	ol8_aarch64_appstream
	nginx-mod-http-image-filter-1.20.1-1.0.1.module+el8.8.0+21179+be6d61e7.1.aarch64.rpm	ccf756275d6b2ee3a9be14e38c7e1b29bf62fbed2028fad6774a8ddbc89a47ab	-	ol8_aarch64_appstream
	nginx-mod-http-perl-1.20.1-1.0.1.module+el8.8.0+21179+be6d61e7.1.aarch64.rpm	5f79c9a2cdeb61c7639cbc4c6b15aadf349acf77a3e9d8bec00640c2abfa8094	-	ol8_aarch64_appstream
	nginx-mod-http-xslt-filter-1.20.1-1.0.1.module+el8.8.0+21179+be6d61e7.1.aarch64.rpm	0aaffa2dd9a68a950a1659cd4c7d2674dc1a3bd4bfe1a367fd963e1f1bdf2559	-	ol8_aarch64_appstream
	nginx-mod-mail-1.20.1-1.0.1.module+el8.8.0+21179+be6d61e7.1.aarch64.rpm	f076cc03a55d9c4d66880e4d70c1710e8adedd49b5ab9fd757d3c8af652f2b7d	-	ol8_aarch64_appstream
	nginx-mod-stream-1.20.1-1.0.1.module+el8.8.0+21179+be6d61e7.1.aarch64.rpm	e7a50c25256dea1d882abf660727bd72bf0f0f8e90a39e6c054b3698cf02eb4d	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	nginx-1.20.1-1.0.1.module+el8.8.0+21179+be6d61e7.1.src.rpm	7ef34e69cdb688387df216e6e5508c97744c762411e0f419030d8544bac9f0b0	-	ol8_x86_64_appstream
	nginx-1.20.1-1.0.1.module+el8.8.0+21179+be6d61e7.1.x86_64.rpm	721a544e891ee5961f4d0541bd0c192f95a43af38ba5980cfc214fe66d3ff103	-	ol8_x86_64_appstream
	nginx-all-modules-1.20.1-1.0.1.module+el8.8.0+21179+be6d61e7.1.noarch.rpm	15aec897ffad85d8b90f338c262fed7cde13cd61474a431466c5fd9181a84059	-	ol8_x86_64_appstream
	nginx-filesystem-1.20.1-1.0.1.module+el8.8.0+21179+be6d61e7.1.noarch.rpm	a2abeaee8c2aa367d295a2b5c53a3d560c2e9da328557a05c82616c8061cff03	-	ol8_x86_64_appstream
	nginx-mod-devel-1.20.1-1.0.1.module+el8.8.0+21179+be6d61e7.1.x86_64.rpm	de9d649d3ab2275660f429ef9926ad919aea47f66f0eadd90f5779fa4c8140cf	-	ol8_x86_64_appstream
	nginx-mod-http-image-filter-1.20.1-1.0.1.module+el8.8.0+21179+be6d61e7.1.x86_64.rpm	5e6fab24923a6f86abfd43d2226e707e54de96630649a708af2fb98f97eeb1c4	-	ol8_x86_64_appstream
	nginx-mod-http-perl-1.20.1-1.0.1.module+el8.8.0+21179+be6d61e7.1.x86_64.rpm	a78c8e67addc298b52f2101fad2a9f35ad39f893769c40884a747854983ebc66	-	ol8_x86_64_appstream
	nginx-mod-http-xslt-filter-1.20.1-1.0.1.module+el8.8.0+21179+be6d61e7.1.x86_64.rpm	77ae1751b15916221214ed0dd189c5e77f71143fb184376c2ff060749e1c4691	-	ol8_x86_64_appstream
	nginx-mod-mail-1.20.1-1.0.1.module+el8.8.0+21179+be6d61e7.1.x86_64.rpm	dd51087c66bfc386d3197678cac6f8ac1dc055f836364c45f020902c23dde48e	-	ol8_x86_64_appstream
	nginx-mod-stream-1.20.1-1.0.1.module+el8.8.0+21179+be6d61e7.1.x86_64.rpm	cab51c825c5c3331053dad1f95857fb801e291ee56140b733971123a6c7e57f7	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691