===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata53.html,v
retrieving revision 1.6
retrieving revision 1.7
diff -u -r1.6 -r1.7
--- www/errata53.html 2013/05/17 13:49:15 1.6
+++ www/errata53.html 2013/05/20 18:51:29 1.7
@@ -117,11 +117,13 @@
003: RELIABILITY FIX: May 17, 2013 All architectures
-A stack-based buffer overflow might occur in an
+A problem exists in
nginx(8)
-worker process while handling a specially crafted request, potentially resulting in arbitrary code
-execution. This issue was assigned CVE-2013-2070.
-
+if proxy_pass is used with untrusted HTTP backend servers.
+The problem may lead to a denial of service or a disclosure of a
+worker process memory on a specially crafted response from an
+upstream proxied server.
+This issue was assigned CVE-2013-2070.
A source code patch exists which remedies this problem.
@@ -143,7 +145,7 @@
www@openbsd.org
-
$OpenBSD: errata53.html,v 1.6 2013/05/17 13:49:15 sthen Exp $
+
$OpenBSD: errata53.html,v 1.7 2013/05/20 18:51:29 sthen Exp $