This bug was fixed in the package nginx - 0.7.61-1ubuntu2
--------------- nginx (0.7.61-1ubuntu2) karmic; urgency=low
* Install html files. - debian/dirs: Add 'var/www/nginx-default'. - debian/nginx.install: Add 'html/* var/www/nginx-default'. * SECURITY UPDATE (CVE-2009-2629): Buffer underflow vulnerability, which allows remote attackers to execute arbitrary code via crafted HTTP request. (LP: #430064) - src/http/ngx_http_parse.c patched.
-- Andres Rodriguez <email address hidden> Thu, 24 Sep 2009 17:28:34 -0400
This bug was fixed in the package nginx - 0.7.61-1ubuntu2
---------------
nginx (0.7.61-1ubuntu2) karmic; urgency=low
* Install html files. nginx-default' . nginx.install: Add 'html/* var/www/ nginx-default' . ngx_http_ parse.c patched.
- debian/dirs: Add 'var/www/
- debian/
* SECURITY UPDATE (CVE-2009-2629): Buffer underflow vulnerability, which
allows remote attackers to execute arbitrary code via crafted HTTP
request. (LP: #430064)
- src/http/
-- Andres Rodriguez <email address hidden> Thu, 24 Sep 2009 17:28:34 -0400