Package name
nginx
Date
2012-03-29
Advisory ID
MDVSA-2012:043
Affected versions
2011 i586 , 2011 x86_64 , 2010.1 i586 , 2010.1 x86_64

Problem description

A vulnerability has been found and corrected in nginx:

Specially crafted backend response could result in sensitive
information leak (CVE-2012-1180).

The updated packages have been patched to correct this issue.

Updated packages

2011 i586

 dd738ba12a2127a78731eabb19129045  2011/i586/nginx-1.0.5-1.1-mdv2011.0.i586.rpm 
 5ee13d12672c9cd141449bd0dc024479  2011/SRPMS/nginx-1.0.5-1.1.src.rpm

2011 x86_64

 d4af6f92f3508722e79dad2a5d12f269  2011/x86_64/nginx-1.0.5-1.1-mdv2011.0.x86_64.rpm 
 5ee13d12672c9cd141449bd0dc024479  2011/SRPMS/nginx-1.0.5-1.1.src.rpm

2010.1 i586

 44b081cef04380c1b45336962f9e9c4a  2010.1/i586/nginx-0.8.41-1.1mdv2010.2.i586.rpm 
 ba57a417d0064fb122694b5dacedb1dd  2010.1/SRPMS/nginx-0.8.41-1.1mdv2010.2.src.rpm

2010.1 x86_64

 0008b13952f6f57c14efabeba5fbc717  2010.1/x86_64/nginx-0.8.41-1.1mdv2010.2.x86_64.rpm 
 ba57a417d0064fb122694b5dacedb1dd  2010.1/SRPMS/nginx-0.8.41-1.1mdv2010.2.src.rpm

References