Amazon Linux 1 Security Advisory: ALAS-2011-30
Advisory Release Date: 2011-12-13 12:50 Pacific
Advisory Updated Date: 2014-09-14 15:08 Pacific
Heap-based buffer overflow in compression-pointer processing in core/ngx_resolver.c in nginx before 1.0.10 allows remote resolvers to cause a denial of service (daemon crash) or possibly have unspecified other impact via a long response.
Affected Packages:
nginx
Issue Correction:
Run yum update nginx to update your system.
i686:
nginx-debuginfo-0.8.54-1.4.amzn1.i686
nginx-0.8.54-1.4.amzn1.i686
src:
nginx-0.8.54-1.4.amzn1.src
x86_64:
nginx-debuginfo-0.8.54-1.4.amzn1.x86_64
nginx-0.8.54-1.4.amzn1.x86_64