Your submission was sent successfully! Close

USN-3114-1: nginx vulnerability

25 October 2016

The system could be made to run programs as an administrator.

Releases

Packages

  • nginx - small, powerful, scalable web/proxy server

Details

Dawid Golunski discovered that the nginx package incorrectly handled log
file permissions. A remote attacker could possibly use this issue to obtain
root privileges.

References