Comment 4 for bug 430064

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package nginx - 0.7.61-1ubuntu2

---------------
nginx (0.7.61-1ubuntu2) karmic; urgency=low

  * Install html files.
    - debian/dirs: Add 'var/www/nginx-default'.
    - debian/nginx.install: Add 'html/* var/www/nginx-default'.
  * SECURITY UPDATE (CVE-2009-2629): Buffer underflow vulnerability, which
    allows remote attackers to execute arbitrary code via crafted HTTP
    request. (LP: #430064)
    - src/http/ngx_http_parse.c patched.

 -- Andres Rodriguez <email address hidden> Thu, 24 Sep 2009 17:28:34 -0400