tag 868109 pending thanks Hello,
Bug #868109 reported by you has been fixed in the Git repository. You can see the changelog below, and you can check the diff of the fix at: https://anonscm.debian.org/cgit/pkg-nginx/nginx.git/commit/?id=47af479 --- commit 47af4791200c265e43523d7232ffdfc3de3377dd Author: Chris Lamb <la...@debian.org> Date: Thu Jul 13 09:06:49 2017 +0100 Import Debian changes 1.2.1-2.2+wheezy4+deb7u1 nginx (1.2.1-2.2+wheezy4+deb7u1) wheezy-security; urgency=high * CVE-2017-7529: Fix an vulnerability in the range filter. A specially crafted request could have resulted in an integer overflow and incorrect processing of ranges, potentially resulting in sensitive information leak. (Closes: #868109) diff --git a/debian/changelog b/debian/changelog index 2c76c12..5a07c41 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,12 @@ +nginx (1.2.1-2.2+wheezy4+deb7u1) wheezy-security; urgency=high + + * CVE-2017-7529: Fix an vulnerability in the range filter. A specially + crafted request could have resulted in an integer overflow and incorrect + processing of ranges, potentially resulting in sensitive information + leak. (Closes: #868109) + + -- Chris Lamb <la...@debian.org> Thu, 13 Jul 2017 09:06:49 +0100 + nginx (1.2.1-2.2+wheezy4) wheezy-security; urgency=high [ Christos Trochalakis ]