Boletines de Vulnerabilidades |
DSA-3029 nginx - security update |
|
Información sobre el sistema |
|
Software afectado | Debian |
Descripción |
|
Antoine Delignat-Lavaud and Karthikeyan Bhargavan discovered that it waspossible to reuse cached SSL sessions in unrelated contexts, allowingvirtual host confusion attacks in some configurations by an attacker ina privileged network position. More info: https://www.debian.org/security/2014/dsa-3029 |
|
Identificadores estándar |
|
Propiedad | Valor |
CVE | CVE-2014-3616 and DSA-3029. |
Histórico de versiones |
||
Versión | Comentario | Fecha |
1.0 | Advisory issued | 2014-10-14 |