Nginx-ru mailing list archive (nginx-ru@sysoev.ru)
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
CVE-2010-5298
- To: nginx-ru@xxxxxxxxx
- Subject: CVE-2010-5298
- From: Anton Yuzhaninov <citrin@xxxxxxxxx>
- Date: Wed, 30 Apr 2014 13:18:21 +0400
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=citrin.ru; s=s0; t=1398849502; bh=j7rmDXuuOavl0xEq1t8/LafCKaGwle2+Px3cFS5k4bQ=; h=Message-ID:Date:From:MIME-Version:To:Subject:Content-Type: Content-Transfer-Encoding; b=bwbKq/zeAfohYDCPOvu0l3yldT3hBmH9S1HzBE/P9oJLiKFmhfKLDdV2LmXlEIZ25 igKjPiEx/V61XDZHYFzR5JwINP9PM/jiW1w18rr3vjVqD9Cag4Vskf81DiKlsJIALK dTA22iY97eU/By3MXQXV0SUmfsYp3oGioPVspS5c=
Подвержен ли nginx этой уязвимости в openssl:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-5298
?
grep по исходникам показывает наличие
SSL_CTX_set_mode(ssl->ctx, SSL_MODE_RELEASE_BUFFERS);
_______________________________________________
nginx-ru mailing list
nginx-ru@xxxxxxxxx
http://mailman.nginx.org/mailman/listinfo/nginx-ru
|
