Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2018-16845 (GCVE-0-2018-16845)
Vulnerability from cvelistv5 – Published: 2018-11-07 14:00 – Updated: 2024-08-05 10:32
VLAI?
EPSS
Summary
nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module.
Severity ?
8.2 (High)
CWE
Assigner
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T10:32:54.012Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "DSA-4335",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2018/dsa-4335"
},
{
"name": "RHSA-2018:3680",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:3680"
},
{
"name": "RHSA-2018:3681",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:3681"
},
{
"name": "105868",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/105868"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16845"
},
{
"name": "1042039",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id/1042039"
},
{
"name": "[debian-lts-announce] 20181108 [SECURITY] [DLA 1572-1] nginx security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/11/msg00010.html"
},
{
"name": "RHSA-2018:3653",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:3653"
},
{
"name": "RHSA-2018:3652",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:3652"
},
{
"name": "USN-3812-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3812-1/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html"
},
{
"name": "openSUSE-SU-2019:2120",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00035.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.apple.com/kb/HT212818"
},
{
"name": "20210921 APPLE-SA-2021-09-20-4 Xcode 13",
"tags": [
"mailing-list",
"x_refsource_FULLDISC",
"x_transferred"
],
"url": "http://seclists.org/fulldisclosure/2021/Sep/36"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "nginx",
"vendor": "[UNKNOWN]",
"versions": [
{
"status": "affected",
"version": "1.15.6"
},
{
"status": "affected",
"version": "1.14.1"
}
]
}
],
"datePublic": "2018-11-06T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module."
}
],
"metrics": [
{
"cvssV3_0": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-400",
"description": "CWE-400",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-09-21T23:07:09",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "DSA-4335",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2018/dsa-4335"
},
{
"name": "RHSA-2018:3680",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:3680"
},
{
"name": "RHSA-2018:3681",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:3681"
},
{
"name": "105868",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/105868"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16845"
},
{
"name": "1042039",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id/1042039"
},
{
"name": "[debian-lts-announce] 20181108 [SECURITY] [DLA 1572-1] nginx security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/11/msg00010.html"
},
{
"name": "RHSA-2018:3653",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:3653"
},
{
"name": "RHSA-2018:3652",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:3652"
},
{
"name": "USN-3812-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3812-1/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html"
},
{
"name": "openSUSE-SU-2019:2120",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00035.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.apple.com/kb/HT212818"
},
{
"name": "20210921 APPLE-SA-2021-09-20-4 Xcode 13",
"tags": [
"mailing-list",
"x_refsource_FULLDISC"
],
"url": "http://seclists.org/fulldisclosure/2021/Sep/36"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2018-16845",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "nginx",
"version": {
"version_data": [
{
"version_value": "1.15.6"
},
{
"version_value": "1.14.1"
}
]
}
}
]
},
"vendor_name": "[UNKNOWN]"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module."
}
]
},
"impact": {
"cvss": [
[
{
"vectorString": "8.2/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.0"
}
]
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-400"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "DSA-4335",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2018/dsa-4335"
},
{
"name": "RHSA-2018:3680",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:3680"
},
{
"name": "RHSA-2018:3681",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:3681"
},
{
"name": "105868",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/105868"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16845",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16845"
},
{
"name": "1042039",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1042039"
},
{
"name": "[debian-lts-announce] 20181108 [SECURITY] [DLA 1572-1] nginx security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2018/11/msg00010.html"
},
{
"name": "RHSA-2018:3653",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:3653"
},
{
"name": "RHSA-2018:3652",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:3652"
},
{
"name": "USN-3812-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3812-1/"
},
{
"name": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html",
"refsource": "MISC",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html"
},
{
"name": "openSUSE-SU-2019:2120",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00035.html"
},
{
"name": "https://support.apple.com/kb/HT212818",
"refsource": "CONFIRM",
"url": "https://support.apple.com/kb/HT212818"
},
{
"name": "20210921 APPLE-SA-2021-09-20-4 Xcode 13",
"refsource": "FULLDISC",
"url": "http://seclists.org/fulldisclosure/2021/Sep/36"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2018-16845",
"datePublished": "2018-11-07T14:00:00",
"dateReserved": "2018-09-11T00:00:00",
"dateUpdated": "2024-08-05T10:32:54.012Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"1.0.7\", \"versionEndIncluding\": \"1.0.15\", \"matchCriteriaId\": \"774FF59B-7E9B-4DFE-BDDA-3261321F62A8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"1.1.3\", \"versionEndIncluding\": \"1.15.5\", \"matchCriteriaId\": \"72F0096B-D1BF-4F0E-960B-42666438B6FD\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*\", \"matchCriteriaId\": \"815D70A8-47D3-459C-A32C-9FEACA0659D1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*\", \"matchCriteriaId\": \"F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*\", \"matchCriteriaId\": \"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"07C312A0-CD2C-4B9C-B064-6409B25C278F\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B620311B-34A3-48A6-82DF-6F078D7A4493\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apple:xcode:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"13.0\", \"matchCriteriaId\": \"BB279F6B-EE4C-4885-9CD4-657F6BD2548F\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module.\"}, {\"lang\": \"es\", \"value\": \"nginx en versiones anteriores a la 1.15.6 y 1.14.1 tiene una vulnerabilidad en ngx_http_mp4_module, que podr\\u00eda permitir que un atacante provoque un bucle infinito en un proceso worker o resulte en la divulgaci\\u00f3n de la memoria del proceso mediante el uso de un archivo mp4 especialmente manipulado. El problema solo afecta a nginx si est\\u00e1 incluido con ngx_http_mp4_module (el m\\u00f3dulo no est\\u00e1 incluido por defecto) y se emplea la directiva .mp4 en el archivo de configuraci\\u00f3n. Adem\\u00e1s, el atacante solo es posible si un atacante puede desencadenar el procesado de un archivo mp4 especialmente manipulado con ngx_http_mp4_module.\"}]",
"id": "CVE-2018-16845",
"lastModified": "2024-11-21T03:53:25.953",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H\", \"baseScore\": 6.1, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 4.2}], \"cvssMetricV30\": [{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H\", \"baseScore\": 8.2, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 4.2}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:P/I:N/A:P\", \"baseScore\": 5.8, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 4.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
"published": "2018-11-07T14:29:00.883",
"references": "[{\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00035.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://seclists.org/fulldisclosure/2021/Sep/36\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/105868\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.securitytracker.com/id/1042039\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:3652\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:3653\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:3680\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:3681\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16845\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2018/11/msg00010.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://support.apple.com/kb/HT212818\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3812-1/\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://www.debian.org/security/2018/dsa-4335\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00035.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://seclists.org/fulldisclosure/2021/Sep/36\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/105868\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.securitytracker.com/id/1042039\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:3652\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:3653\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:3680\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2018:3681\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16845\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2018/11/msg00010.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://support.apple.com/kb/HT212818\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://usn.ubuntu.com/3812-1/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://www.debian.org/security/2018/dsa-4335\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]",
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"secalert@redhat.com\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-400\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-835\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2018-16845\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2018-11-07T14:29:00.883\",\"lastModified\":\"2024-11-21T03:53:25.953\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module.\"},{\"lang\":\"es\",\"value\":\"nginx en versiones anteriores a la 1.15.6 y 1.14.1 tiene una vulnerabilidad en ngx_http_mp4_module, que podr\u00eda permitir que un atacante provoque un bucle infinito en un proceso worker o resulte en la divulgaci\u00f3n de la memoria del proceso mediante el uso de un archivo mp4 especialmente manipulado. El problema solo afecta a nginx si est\u00e1 incluido con ngx_http_mp4_module (el m\u00f3dulo no est\u00e1 incluido por defecto) y se emplea la directiva .mp4 en el archivo de configuraci\u00f3n. Adem\u00e1s, el atacante solo es posible si un atacante puede desencadenar el procesado de un archivo mp4 especialmente manipulado con ngx_http_mp4_module.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H\",\"baseScore\":6.1,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":4.2}],\"cvssMetricV30\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H\",\"baseScore\":8.2,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":4.2}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:N/A:P\",\"baseScore\":5.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":4.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-400\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-835\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.0.7\",\"versionEndIncluding\":\"1.0.15\",\"matchCriteriaId\":\"774FF59B-7E9B-4DFE-BDDA-3261321F62A8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.1.3\",\"versionEndIncluding\":\"1.15.5\",\"matchCriteriaId\":\"72F0096B-D1BF-4F0E-960B-42666438B6FD\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*\",\"matchCriteriaId\":\"815D70A8-47D3-459C-A32C-9FEACA0659D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*\",\"matchCriteriaId\":\"23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07C312A0-CD2C-4B9C-B064-6409B25C278F\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B620311B-34A3-48A6-82DF-6F078D7A4493\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apple:xcode:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"13.0\",\"matchCriteriaId\":\"BB279F6B-EE4C-4885-9CD4-657F6BD2548F\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00035.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://seclists.org/fulldisclosure/2021/Sep/36\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/105868\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1042039\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:3652\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:3653\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:3680\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:3681\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16845\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2018/11/msg00010.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://support.apple.com/kb/HT212818\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3812-1/\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2018/dsa-4335\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00035.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://seclists.org/fulldisclosure/2021/Sep/36\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/105868\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1042039\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:3652\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:3653\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:3680\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:3681\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16845\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2018/11/msg00010.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://support.apple.com/kb/HT212818\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3812-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2018/dsa-4335\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
VAR-201811-0987
Vulnerability from variot - Updated: 2024-07-23 21:01nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module. nginx Contains an information disclosure vulnerability.Information obtained and denial of service (DoS) May be in a state. nginx is prone to multiple denial-of-service vulnerabilities. Attackers can exploit these issues to cause denial-of-service conditions. Versions prior to nginx 1.15.6 and 1.14.1 are vulnerable. nginx is a lightweight web server/reverse proxy server and email (IMAP/POP3) proxy server developed by Russian programmer Igor Sysoev. The vulnerability is caused by the program not processing MP4 files correctly.
For the stable distribution (stretch), these problems have been fixed in version 1.10.3-1+deb9u2.
We recommend that you upgrade your nginx packages.
For the detailed security status of nginx please refer to its security tracker page at: https://security-tracker.debian.org/tracker/nginx
Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/
Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE-----
iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAlvkq1wACgkQEMKTtsN8 TjY+Sw//eT499ax9D25pWjbpRjjJQ+WG5m7xL3zoCJfWymNmQnsgiV7/gGbpOvAV n6OG/Ckq946v0Du4YFiCDlkPY4P5WJR2/qnBNJPbFEcMssJJbuhpZCLAKSMFjm9A 2IZYGGHZDMGcEo9ZSEDJX/nViSpbN+Y8koTXX43ORizeKhmOWVY0Dm7gqm2DESti CQ0EVQyMSqZisiZumoDjn0FrvkQnxvO4GONfYTUcsZf8z4yb03r7rzO/wDgu9JvU 8+L7cgMcq5TFT3LoZ/LvrJOv8GbMa5SUwqp84ePEZMtAH4NYFIyijOF05MKox7Pq zRO/NTkoIQ7/mfz6dHFRl54Ac5iEGnjL7ksC6zL1rD+W2E+JXOnHUpRdmjQ7CvdA /5GnyZSJbvD6D7/c5MBXU8r60ALXc75hiL8ibXM/LExll/vOw7++/7dDqMacSx4O pQl+tduqW+55VMAyT7DKoM5+nZmq2805EH2P4W37uqE1UCh0eJkEK+bp3BLO2Adx IJM1ujtt6Euyu3c1JzZADpiOAsATLxvh1qGxvHmUeXN0ODEYAnV2mgKtZxU8+W+Z JrsrUTTzFKlmPQug7Bvx7CyZ6S/EQchjeD+Ni7W/HRtW7/eSoh0dntBjQUlg50yd K2fAQq6MD37FTHAghC243ZqqcRJDoDXtKfvKm8Zt3ZUnX3XUqVg=3QLE -----END PGP SIGNATURE----- . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256
===================================================================== Red Hat Security Advisory
Synopsis: Important: rh-nginx18-nginx security update Advisory ID: RHSA-2018:3652-01 Product: Red Hat Software Collections Advisory URL: https://access.redhat.com/errata/RHSA-2018:3652 Issue date: 2018-11-26 CVE Names: CVE-2018-16845 =====================================================================
- Summary:
An update for rh-nginx18-nginx is now available for Red Hat Software Collections.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
- Relevant releases/architectures:
Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6) - x86_64 Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7) - x86_64 Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4) - x86_64 Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5) - x86_64 Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6) - x86_64 Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6) - x86_64 Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7) - x86_64
- Description:
nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.
Security Fix(es):
- nginx: Denial of service and memory disclosure via mp4 module (CVE-2018-16845)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank the Nginx project for reporting this issue.
- Solution:
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://access.redhat.com/articles/11258
The rh-nginx18-nginx service must be restarted for this update to take effect.
- Package List:
Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6):
Source: rh-nginx18-nginx-1.8.1-1.el6.1.src.rpm
x86_64: rh-nginx18-nginx-1.8.1-1.el6.1.x86_64.rpm rh-nginx18-nginx-debuginfo-1.8.1-1.el6.1.x86_64.rpm
Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6):
Source: rh-nginx18-nginx-1.8.1-1.el6.1.src.rpm
x86_64: rh-nginx18-nginx-1.8.1-1.el6.1.x86_64.rpm rh-nginx18-nginx-debuginfo-1.8.1-1.el6.1.x86_64.rpm
Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7):
Source: rh-nginx18-nginx-1.8.1-1.el7.1.src.rpm
x86_64: rh-nginx18-nginx-1.8.1-1.el7.1.x86_64.rpm rh-nginx18-nginx-debuginfo-1.8.1-1.el7.1.x86_64.rpm
Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4):
Source: rh-nginx18-nginx-1.8.1-1.el7.1.src.rpm
x86_64: rh-nginx18-nginx-1.8.1-1.el7.1.x86_64.rpm rh-nginx18-nginx-debuginfo-1.8.1-1.el7.1.x86_64.rpm
Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5):
Source: rh-nginx18-nginx-1.8.1-1.el7.1.src.rpm
x86_64: rh-nginx18-nginx-1.8.1-1.el7.1.x86_64.rpm rh-nginx18-nginx-debuginfo-1.8.1-1.el7.1.x86_64.rpm
Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6):
Source: rh-nginx18-nginx-1.8.1-1.el7.1.src.rpm
x86_64: rh-nginx18-nginx-1.8.1-1.el7.1.x86_64.rpm rh-nginx18-nginx-debuginfo-1.8.1-1.el7.1.x86_64.rpm
Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7):
Source: rh-nginx18-nginx-1.8.1-1.el7.1.src.rpm
x86_64: rh-nginx18-nginx-1.8.1-1.el7.1.x86_64.rpm rh-nginx18-nginx-debuginfo-1.8.1-1.el7.1.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/
- References:
https://access.redhat.com/security/cve/CVE-2018-16845 https://access.redhat.com/security/updates/classification/#important
- Contact:
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/
Copyright 2018 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1
iQIVAwUBW/viKdzjgjWX9erEAQjSFA/+IYlcY+VkhYOzot4cXoMumMPj0zcn6Iuk TwHfLvfooC8KsM5PK3acSmv2526KlfWn9xi8QJ8YMIoZVX8+LPPC7gOVxmwAyYOn 4uOumQy5rulkk03UB7r6y7u34Xy5mftCXTOouOipvhiW2Na6aZWiRen7ZWRBcMMW okYWY03xJU7/OQafttfP3UUVAYiw5adZ6gAflhZA8q8JzF0RhZXnliyt4kpZ1kLj 8fr6q+9WDVdiHe9u1j1wIXwQglkPnpab+kW1k4KZ3pdJMzFr9unZURHbyDsqbxlh T5rNTFtoLO9rgksSYtkuK0D6MvxVu7MzHMl/X0IsCnFwwAjH9xbqftqX5G26pQR6 L2UlnBNnes+NG357E81aHJus6ioRpjzSsfIrFoU9N0K9llnfbEslwEr239GzF6hH sMO5vap7/i2bmYQ7++jw9jfF67K2AtFvZCa/tYWlilkWOM12BkP2HvuYXCgmtb6F 99oHxB5TyDKPb44epIvzKV/YtvoeHT6beKRIefJ3xstrq8to0f87NZhTTbk5rYt0 HPf5vLjoZO6SYequmHzn++zoAZubU+oZ3fE05jcbrJSwQeMHWLPTtBoBkmQq+l5y rYTxun0/RvYql6bZD4uHAxKzTxyAvrKw0dW+/DGNanQiwkk+/RpPrYTdMhVw4a5a ZrQQucuvvOo= =LfBW -----END PGP SIGNATURE-----
-- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce .
The following packages have been upgraded to a later upstream version: rh-nginx114-nginx (1.14.1)
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201811-0987",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "ubuntu linux",
"scope": "eq",
"trust": 1.0,
"vendor": "canonical",
"version": "18.04"
},
{
"model": "xcode",
"scope": "lt",
"trust": 1.0,
"vendor": "apple",
"version": "13.0"
},
{
"model": "nginx",
"scope": "lte",
"trust": 1.0,
"vendor": "f5",
"version": "1.15.5"
},
{
"model": "leap",
"scope": "eq",
"trust": 1.0,
"vendor": "opensuse",
"version": "15.1"
},
{
"model": "linux",
"scope": "eq",
"trust": 1.0,
"vendor": "debian",
"version": "9.0"
},
{
"model": "nginx",
"scope": "gte",
"trust": 1.0,
"vendor": "f5",
"version": "1.0.7"
},
{
"model": "nginx",
"scope": "lte",
"trust": 1.0,
"vendor": "f5",
"version": "1.0.15"
},
{
"model": "linux",
"scope": "eq",
"trust": 1.0,
"vendor": "debian",
"version": "8.0"
},
{
"model": "ubuntu linux",
"scope": "eq",
"trust": 1.0,
"vendor": "canonical",
"version": "14.04"
},
{
"model": "ubuntu linux",
"scope": "eq",
"trust": 1.0,
"vendor": "canonical",
"version": "16.04"
},
{
"model": "nginx",
"scope": "gte",
"trust": 1.0,
"vendor": "f5",
"version": "1.1.3"
},
{
"model": "ubuntu linux",
"scope": "eq",
"trust": 1.0,
"vendor": "canonical",
"version": "18.10"
},
{
"model": "ubuntu",
"scope": null,
"trust": 0.8,
"vendor": "canonical",
"version": null
},
{
"model": "gnu/linux",
"scope": null,
"trust": 0.8,
"vendor": "debian",
"version": null
},
{
"model": "nginx",
"scope": "lt",
"trust": 0.8,
"vendor": "igor sysoev",
"version": "1.14.1"
},
{
"model": "nginx",
"scope": "lt",
"trust": 0.8,
"vendor": "igor sysoev",
"version": "1.15.6"
},
{
"model": "enterprise linux",
"scope": null,
"trust": 0.8,
"vendor": "red hat",
"version": null
},
{
"model": "linux",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "18.10"
},
{
"model": "linux lts",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "18.04"
},
{
"model": "linux lts",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "16.04"
},
{
"model": "linux lts",
"scope": "eq",
"trust": 0.3,
"vendor": "ubuntu",
"version": "14.04"
},
{
"model": "software collections for rhel",
"scope": "eq",
"trust": 0.3,
"vendor": "redhat",
"version": "0"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.15.5"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.14"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.13.3"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.12.1"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.12"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.11.12"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.11.1"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.11"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.10.3"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.10.1"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.10"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.9.15"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.9.10"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.9.9"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.9.5"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.9"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.8.1"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.8"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.7.12"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.7"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.6.3"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.5.13"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.4.7"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.3.16"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.3.15"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.3.14"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.3.11"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.2.9"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.1.18"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.1.17"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.6.1"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.6.0"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.5.9"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.5.8"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.5.7"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.5.6"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.5.5"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.5.4"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.5.3"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.5.2"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.5.12"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.5.11"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.5.10"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.5.1"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.5.0"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.4.3"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.4.2"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.4.1"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.4.0"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.3.9"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.3.8"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.3.7"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.3.6"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.3.5"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.3.4"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.3.3"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.3.2"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.3.13"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.3.12"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.3.10"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.3.1"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.3.0"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.2.0"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.1.9"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.1.8"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.1.7"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.1.6"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.1.5"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.1.4"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.1.3"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.1.2"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.1.19"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.1.16"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.1.15"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.1.14"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.1.13"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.1.12"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.1.11"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.1.10"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.1.1"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.1.0"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.0.9"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.0.8"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.0.7"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.0.15"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.0.14"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.0.13"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.0.12"
},
{
"model": "nginx",
"scope": "eq",
"trust": 0.3,
"vendor": "nginx",
"version": "1.0.10"
},
{
"model": "nginx",
"scope": "ne",
"trust": 0.3,
"vendor": "nginx",
"version": "1.15.6"
},
{
"model": "nginx",
"scope": "ne",
"trust": 0.3,
"vendor": "nginx",
"version": "1.14.1"
}
],
"sources": [
{
"db": "BID",
"id": "105868"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-014189"
},
{
"db": "NVD",
"id": "CVE-2018-16845"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "1.0.15",
"versionStartIncluding": "1.0.7",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "1.15.5",
"versionStartIncluding": "1.1.3",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:apple:xcode:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "13.0",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2018-16845"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Red Hat",
"sources": [
{
"db": "PACKETSTORM",
"id": "150480"
},
{
"db": "PACKETSTORM",
"id": "150453"
},
{
"db": "PACKETSTORM",
"id": "150481"
},
{
"db": "PACKETSTORM",
"id": "150458"
}
],
"trust": 0.4
},
"cve": "CVE-2018-16845",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": false,
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "PARTIAL",
"baseScore": 5.8,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.6,
"impactScore": 4.9,
"integrityImpact": "NONE",
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"trust": 1.0,
"userInteractionRequired": true,
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "Medium",
"accessVector": "Network",
"authentication": "None",
"author": "NVD",
"availabilityImpact": "Partial",
"baseScore": 5.8,
"confidentialityImpact": "Partial",
"exploitabilityScore": null,
"id": "CVE-2018-16845",
"impactScore": null,
"integrityImpact": "None",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "Medium",
"trust": 0.9,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P",
"version": "2.0"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "PARTIAL",
"baseScore": 5.8,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.6,
"id": "VHN-127245",
"impactScore": 4.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.1,
"vectorString": "AV:N/AC:M/AU:N/C:P/I:N/A:P",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"author": "NVD",
"availabilityImpact": "HIGH",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"exploitabilityScore": 1.8,
"impactScore": 4.2,
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H",
"version": "3.1"
},
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "secalert@redhat.com",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"exploitabilityScore": 3.9,
"impactScore": 4.2,
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.0"
},
{
"attackComplexity": "Low",
"attackVector": "Local",
"author": "NVD",
"availabilityImpact": "High",
"baseScore": 6.1,
"baseSeverity": "Medium",
"confidentialityImpact": "Low",
"exploitabilityScore": null,
"id": "CVE-2018-16845",
"impactScore": null,
"integrityImpact": "None",
"privilegesRequired": "None",
"scope": "Unchanged",
"trust": 0.8,
"userInteraction": "Required",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "NVD",
"id": "CVE-2018-16845",
"trust": 1.8,
"value": "MEDIUM"
},
{
"author": "secalert@redhat.com",
"id": "CVE-2018-16845",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-201811-119",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "VULHUB",
"id": "VHN-127245",
"trust": 0.1,
"value": "MEDIUM"
},
{
"author": "VULMON",
"id": "CVE-2018-16845",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-127245"
},
{
"db": "VULMON",
"id": "CVE-2018-16845"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-014189"
},
{
"db": "CNNVD",
"id": "CNNVD-201811-119"
},
{
"db": "NVD",
"id": "CVE-2018-16845"
},
{
"db": "NVD",
"id": "CVE-2018-16845"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module. nginx Contains an information disclosure vulnerability.Information obtained and denial of service (DoS) May be in a state. nginx is prone to multiple denial-of-service vulnerabilities. \nAttackers can exploit these issues to cause denial-of-service conditions. \nVersions prior to nginx 1.15.6 and 1.14.1 are vulnerable. nginx is a lightweight web server/reverse proxy server and email (IMAP/POP3) proxy server developed by Russian programmer Igor Sysoev. The vulnerability is caused by the program not processing MP4 files correctly. \n\nFor the stable distribution (stretch), these problems have been fixed in\nversion 1.10.3-1+deb9u2. \n\nWe recommend that you upgrade your nginx packages. \n\nFor the detailed security status of nginx please refer to\nits security tracker page at:\nhttps://security-tracker.debian.org/tracker/nginx\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n-----BEGIN PGP SIGNATURE-----\n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\nK2fAQq6MD37FTHAghC243ZqqcRJDoDXtKfvKm8Zt3ZUnX3XUqVg=3QLE\n-----END PGP SIGNATURE-----\n. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA256\n\n=====================================================================\n Red Hat Security Advisory\n\nSynopsis: Important: rh-nginx18-nginx security update\nAdvisory ID: RHSA-2018:3652-01\nProduct: Red Hat Software Collections\nAdvisory URL: https://access.redhat.com/errata/RHSA-2018:3652\nIssue date: 2018-11-26\nCVE Names: CVE-2018-16845 \n=====================================================================\n\n1. Summary:\n\nAn update for rh-nginx18-nginx is now available for Red Hat Software\nCollections. \n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Software Collections for Red Hat Enterprise Linux Server (v. 6) - x86_64\nRed Hat Software Collections for Red Hat Enterprise Linux Server (v. 7) - x86_64\nRed Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4) - x86_64\nRed Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5) - x86_64\nRed Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6) - x86_64\nRed Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6) - x86_64\nRed Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7) - x86_64\n\n3. Description:\n\nnginx is a web and proxy server supporting HTTP and other protocols, with a\nfocus on high concurrency, performance, and low memory usage. \n\nSecurity Fix(es):\n\n* nginx: Denial of service and memory disclosure via mp4 module\n(CVE-2018-16845)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, and other related information, refer to the CVE page(s) listed in\nthe References section. \n\nRed Hat would like to thank the Nginx project for reporting this issue. \n\n4. Solution:\n\nFor details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe rh-nginx18-nginx service must be restarted for this update to take\neffect. \n\n5. Package List:\n\nRed Hat Software Collections for Red Hat Enterprise Linux Server (v. 6):\n\nSource:\nrh-nginx18-nginx-1.8.1-1.el6.1.src.rpm\n\nx86_64:\nrh-nginx18-nginx-1.8.1-1.el6.1.x86_64.rpm\nrh-nginx18-nginx-debuginfo-1.8.1-1.el6.1.x86_64.rpm\n\nRed Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6):\n\nSource:\nrh-nginx18-nginx-1.8.1-1.el6.1.src.rpm\n\nx86_64:\nrh-nginx18-nginx-1.8.1-1.el6.1.x86_64.rpm\nrh-nginx18-nginx-debuginfo-1.8.1-1.el6.1.x86_64.rpm\n\nRed Hat Software Collections for Red Hat Enterprise Linux Server (v. 7):\n\nSource:\nrh-nginx18-nginx-1.8.1-1.el7.1.src.rpm\n\nx86_64:\nrh-nginx18-nginx-1.8.1-1.el7.1.x86_64.rpm\nrh-nginx18-nginx-debuginfo-1.8.1-1.el7.1.x86_64.rpm\n\nRed Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4):\n\nSource:\nrh-nginx18-nginx-1.8.1-1.el7.1.src.rpm\n\nx86_64:\nrh-nginx18-nginx-1.8.1-1.el7.1.x86_64.rpm\nrh-nginx18-nginx-debuginfo-1.8.1-1.el7.1.x86_64.rpm\n\nRed Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5):\n\nSource:\nrh-nginx18-nginx-1.8.1-1.el7.1.src.rpm\n\nx86_64:\nrh-nginx18-nginx-1.8.1-1.el7.1.x86_64.rpm\nrh-nginx18-nginx-debuginfo-1.8.1-1.el7.1.x86_64.rpm\n\nRed Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6):\n\nSource:\nrh-nginx18-nginx-1.8.1-1.el7.1.src.rpm\n\nx86_64:\nrh-nginx18-nginx-1.8.1-1.el7.1.x86_64.rpm\nrh-nginx18-nginx-debuginfo-1.8.1-1.el7.1.x86_64.rpm\n\nRed Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7):\n\nSource:\nrh-nginx18-nginx-1.8.1-1.el7.1.src.rpm\n\nx86_64:\nrh-nginx18-nginx-1.8.1-1.el7.1.x86_64.rpm\nrh-nginx18-nginx-debuginfo-1.8.1-1.el7.1.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security. Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/\n\n7. References:\n\nhttps://access.redhat.com/security/cve/CVE-2018-16845\nhttps://access.redhat.com/security/updates/classification/#important\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2018 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n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\nZrQQucuvvOo=\n=LfBW\n-----END PGP SIGNATURE-----\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce\n. \n\nThe following packages have been upgraded to a later upstream version:\nrh-nginx114-nginx (1.14.1)",
"sources": [
{
"db": "NVD",
"id": "CVE-2018-16845"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-014189"
},
{
"db": "BID",
"id": "105868"
},
{
"db": "VULHUB",
"id": "VHN-127245"
},
{
"db": "VULMON",
"id": "CVE-2018-16845"
},
{
"db": "PACKETSTORM",
"id": "150253"
},
{
"db": "PACKETSTORM",
"id": "150480"
},
{
"db": "PACKETSTORM",
"id": "150453"
},
{
"db": "PACKETSTORM",
"id": "150481"
},
{
"db": "PACKETSTORM",
"id": "150458"
}
],
"trust": 2.52
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2018-16845",
"trust": 3.4
},
{
"db": "BID",
"id": "105868",
"trust": 2.0
},
{
"db": "SECTRACK",
"id": "1042039",
"trust": 1.7
},
{
"db": "JVNDB",
"id": "JVNDB-2018-014189",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201811-119",
"trust": 0.7
},
{
"db": "AUSCERT",
"id": "ESB-2019.3384",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2021.3157",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2020.0464",
"trust": 0.6
},
{
"db": "AUSCERT",
"id": "ESB-2019.0451",
"trust": 0.6
},
{
"db": "PACKETSTORM",
"id": "164240",
"trust": 0.6
},
{
"db": "CS-HELP",
"id": "SB2022042571",
"trust": 0.6
},
{
"db": "PACKETSTORM",
"id": "150453",
"trust": 0.2
},
{
"db": "VULHUB",
"id": "VHN-127245",
"trust": 0.1
},
{
"db": "VULMON",
"id": "CVE-2018-16845",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "150253",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "150480",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "150481",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "150458",
"trust": 0.1
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-127245"
},
{
"db": "VULMON",
"id": "CVE-2018-16845"
},
{
"db": "BID",
"id": "105868"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-014189"
},
{
"db": "PACKETSTORM",
"id": "150253"
},
{
"db": "PACKETSTORM",
"id": "150480"
},
{
"db": "PACKETSTORM",
"id": "150453"
},
{
"db": "PACKETSTORM",
"id": "150481"
},
{
"db": "PACKETSTORM",
"id": "150458"
},
{
"db": "CNNVD",
"id": "CNNVD-201811-119"
},
{
"db": "NVD",
"id": "CVE-2018-16845"
}
]
},
"id": "VAR-201811-0987",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-127245"
}
],
"trust": 0.01
},
"last_update_date": "2024-07-23T21:01:53.545000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "[SECURITY] [DLA 1572-1] nginx security update",
"trust": 0.8,
"url": "https://lists.debian.org/debian-lts-announce/2018/11/msg00010.html"
},
{
"title": "DSA-4335",
"trust": 0.8,
"url": "https://www.debian.org/security/2018/dsa-4335"
},
{
"title": "Bug 1644508",
"trust": 0.8,
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=cve-2018-16845"
},
{
"title": "RHSA-2018:3652",
"trust": 0.8,
"url": "https://access.redhat.com/errata/rhsa-2018:3652"
},
{
"title": "RHSA-2018:3653",
"trust": 0.8,
"url": "https://access.redhat.com/errata/rhsa-2018:3653"
},
{
"title": "RHSA-2018:3680",
"trust": 0.8,
"url": "https://access.redhat.com/errata/rhsa-2018:3680"
},
{
"title": "RHSA-2018:3681",
"trust": 0.8,
"url": "https://access.redhat.com/errata/rhsa-2018:3681"
},
{
"title": "USN-3812-1",
"trust": 0.8,
"url": "https://usn.ubuntu.com/3812-1/"
},
{
"title": "(CVE-2018-16845)",
"trust": 0.8,
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html"
},
{
"title": "Nginx Security vulnerabilities",
"trust": 0.6,
"url": "http://123.124.177.30/web/xxk/bdxqbyid.tag?id=86626"
},
{
"title": "Red Hat: Important: rh-nginx18-nginx security update",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=rhsa-20183652 - security advisory"
},
{
"title": "Red Hat: Important: rh-nginx110-nginx security update",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=rhsa-20183653 - security advisory"
},
{
"title": "Red Hat: Important: rh-nginx112-nginx security update",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=rhsa-20183680 - security advisory"
},
{
"title": "Red Hat: Important: rh-nginx114-nginx security update",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=rhsa-20183681 - security advisory"
},
{
"title": "Ubuntu Security Notice: nginx vulnerabilities",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=usn-3812-1"
},
{
"title": "Red Hat: CVE-2018-16845",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database\u0026qid=cve-2018-16845"
},
{
"title": "Debian CVElist Bug Report Logs: nginx: CVE-2018-16843 CVE-2018-16844 CVE-2018-16845",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=f21dcb5d073b4fb671c738fa256c2347"
},
{
"title": "IBM: IBM Security Bulletin: IBM API Connect has addressed multiple vulnerabilities in Developer Portal\u00e2\u20ac\u2122s dependencies \u00e2\u20ac\u201c Cumulative list from June 28, 2018 to December 13, 2018",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=ibm_psirt_blog\u0026qid=43da2cd72c1e378d8d94ecec029fcc61"
},
{
"title": "CVE-2018-16845",
"trust": 0.1,
"url": "https://github.com/t4t4ru/cve-2018-16845 "
},
{
"title": "anitazhaochen.github.io",
"trust": 0.1,
"url": "https://github.com/anitazhaochen/anitazhaochen.github.io "
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2018-16845"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-014189"
},
{
"db": "CNNVD",
"id": "CNNVD-201811-119"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-400",
"trust": 1.1
},
{
"problemtype": "CWE-200",
"trust": 0.9
},
{
"problemtype": "CWE-835",
"trust": 0.1
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-127245"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-014189"
},
{
"db": "NVD",
"id": "CVE-2018-16845"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.0,
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=cve-2018-16845"
},
{
"trust": 2.0,
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html"
},
{
"trust": 2.0,
"url": "https://usn.ubuntu.com/3812-1/"
},
{
"trust": 1.8,
"url": "https://access.redhat.com/errata/rhsa-2018:3652"
},
{
"trust": 1.8,
"url": "https://access.redhat.com/errata/rhsa-2018:3653"
},
{
"trust": 1.8,
"url": "https://access.redhat.com/errata/rhsa-2018:3680"
},
{
"trust": 1.8,
"url": "https://access.redhat.com/errata/rhsa-2018:3681"
},
{
"trust": 1.7,
"url": "http://www.securityfocus.com/bid/105868"
},
{
"trust": 1.7,
"url": "https://support.apple.com/kb/ht212818"
},
{
"trust": 1.7,
"url": "https://www.debian.org/security/2018/dsa-4335"
},
{
"trust": 1.7,
"url": "http://seclists.org/fulldisclosure/2021/sep/36"
},
{
"trust": 1.7,
"url": "https://lists.debian.org/debian-lts-announce/2018/11/msg00010.html"
},
{
"trust": 1.7,
"url": "http://www.securitytracker.com/id/1042039"
},
{
"trust": 1.7,
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00035.html"
},
{
"trust": 1.3,
"url": "https://nvd.nist.gov/vuln/detail/cve-2018-16845"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-16845"
},
{
"trust": 0.7,
"url": "https://access.redhat.com/security/cve/cve-2018-16845"
},
{
"trust": 0.6,
"url": "https://access.redhat.com/security/cve/cve-2018-16843"
},
{
"trust": 0.6,
"url": "https://www.ibm.com/support/pages/node/1489143"
},
{
"trust": 0.6,
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20192309-1.html"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2020.0464/"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2019.3384/"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/75522"
},
{
"trust": 0.6,
"url": "https://support.apple.com/en-us/ht212818"
},
{
"trust": 0.6,
"url": "https://www.auscert.org.au/bulletins/esb-2021.3157"
},
{
"trust": 0.6,
"url": "https://www.cybersecurity-help.cz/vdb/sb2022042571"
},
{
"trust": 0.6,
"url": "https://www.ibm.com/blogs/psirt/security-bulletin-aspera-web-shares-application-is-affected-by-nginx-vulnerabilities-cve-2018-16845-cve-2018-16843-cve-2019-7401/"
},
{
"trust": 0.6,
"url": "https://packetstormsecurity.com/files/164240/apple-security-advisory-2021-09-20-4.html"
},
{
"trust": 0.5,
"url": "https://access.redhat.com/security/cve/cve-2018-16844"
},
{
"trust": 0.4,
"url": "https://nvd.nist.gov/vuln/detail/cve-2018-16843"
},
{
"trust": 0.4,
"url": "https://www.redhat.com/mailman/listinfo/rhsa-announce"
},
{
"trust": 0.4,
"url": "https://access.redhat.com/security/team/contact/"
},
{
"trust": 0.4,
"url": "https://bugzilla.redhat.com/):"
},
{
"trust": 0.4,
"url": "https://access.redhat.com/security/team/key/"
},
{
"trust": 0.4,
"url": "https://access.redhat.com/articles/11258"
},
{
"trust": 0.4,
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"trust": 0.3,
"url": "http://nginx.org/"
},
{
"trust": 0.3,
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html"
},
{
"trust": 0.3,
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=cve-2018-16844"
},
{
"trust": 0.3,
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=cve-2018-16843"
},
{
"trust": 0.3,
"url": "https://nvd.nist.gov/vuln/detail/cve-2018-16844"
},
{
"trust": 0.1,
"url": "https://security-tracker.debian.org/tracker/nginx"
},
{
"trust": 0.1,
"url": "https://www.debian.org/security/faq"
},
{
"trust": 0.1,
"url": "https://www.debian.org/security/"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-127245"
},
{
"db": "BID",
"id": "105868"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-014189"
},
{
"db": "PACKETSTORM",
"id": "150253"
},
{
"db": "PACKETSTORM",
"id": "150480"
},
{
"db": "PACKETSTORM",
"id": "150453"
},
{
"db": "PACKETSTORM",
"id": "150481"
},
{
"db": "PACKETSTORM",
"id": "150458"
},
{
"db": "CNNVD",
"id": "CNNVD-201811-119"
},
{
"db": "NVD",
"id": "CVE-2018-16845"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "VULHUB",
"id": "VHN-127245"
},
{
"db": "VULMON",
"id": "CVE-2018-16845"
},
{
"db": "BID",
"id": "105868"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-014189"
},
{
"db": "PACKETSTORM",
"id": "150253"
},
{
"db": "PACKETSTORM",
"id": "150480"
},
{
"db": "PACKETSTORM",
"id": "150453"
},
{
"db": "PACKETSTORM",
"id": "150481"
},
{
"db": "PACKETSTORM",
"id": "150458"
},
{
"db": "CNNVD",
"id": "CNNVD-201811-119"
},
{
"db": "NVD",
"id": "CVE-2018-16845"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2018-11-07T00:00:00",
"db": "VULHUB",
"id": "VHN-127245"
},
{
"date": "2018-11-07T00:00:00",
"db": "VULMON",
"id": "CVE-2018-16845"
},
{
"date": "2018-11-06T00:00:00",
"db": "BID",
"id": "105868"
},
{
"date": "2019-03-14T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2018-014189"
},
{
"date": "2018-11-12T16:57:53",
"db": "PACKETSTORM",
"id": "150253"
},
{
"date": "2018-11-27T17:24:35",
"db": "PACKETSTORM",
"id": "150480"
},
{
"date": "2018-11-26T04:44:44",
"db": "PACKETSTORM",
"id": "150453"
},
{
"date": "2018-11-27T17:24:48",
"db": "PACKETSTORM",
"id": "150481"
},
{
"date": "2018-11-26T10:02:22",
"db": "PACKETSTORM",
"id": "150458"
},
{
"date": "2018-11-07T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201811-119"
},
{
"date": "2018-11-07T14:29:00.883000",
"db": "NVD",
"id": "CVE-2018-16845"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2021-11-10T00:00:00",
"db": "VULHUB",
"id": "VHN-127245"
},
{
"date": "2022-02-22T00:00:00",
"db": "VULMON",
"id": "CVE-2018-16845"
},
{
"date": "2018-11-06T00:00:00",
"db": "BID",
"id": "105868"
},
{
"date": "2019-03-14T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2018-014189"
},
{
"date": "2023-05-15T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201811-119"
},
{
"date": "2022-02-22T19:27:12.373000",
"db": "NVD",
"id": "CVE-2018-16845"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "local",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201811-119"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "nginx Information Disclosure Vulnerability",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2018-014189"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "memory leak",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201811-119"
}
],
"trust": 0.6
}
}
CERTFR-2018-AVI-535
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans Nginx. Elles permettent à un attaquant de provoquer un déni de service à distance et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Nginx versions ant\u00e9rieures \u00e0 1.15.6 et 1.14.1",
"product": {
"name": "N/A",
"vendor": {
"name": "Nginx",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2018-16844",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16844"
},
{
"name": "CVE-2018-16843",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16843"
},
{
"name": "CVE-2018-16845",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16845"
}
],
"links": [],
"reference": "CERTFR-2018-AVI-535",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2018-11-07T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Nginx. Elles\npermettent \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance et\nune atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Nginx",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Nginx CVE-2018-16843, CVE-2018-16844 du 6 novembre 2018",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html?_ga=2.53242600.1560703116.1541576907-1155548486.1533906360"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Nginx CVE-2018-16845 du 6 novembre 2018",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html?_ga=2.53242600.1560703116.1541576907-1155548486.1533906360"
}
]
}
CERTFR-2024-AVI-0866
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits Juniper Networks. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Les versions suivantes de Junos OS et Junos OS Evolved sont à paraître : 22.2R3-S5, 22.3R3-S4, 24.2R2, 24.4R1, 22.2R3-S5-EVO, 22.3R3-S4-EVO, 24.2R2-EVO et 24.4R1-EVO
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Juniper Networks | Junos OS | Junos OS versions antérieures à 21.2R3-S1, 21.2R3-S7, 21.2R3-S8, 21.3R3, 21.3R3-S1, 21.4R2, 21.4R3, 21.4R3-S6, 21.4R3-S7, 21.4R3-S8, 21.4R3-S9, 22.1R1, 22.1R2, 22.1R3-S5, 22.1R3-S6, 22.2R1-S2, 22.2R2, 22.2R3-S3, 22.2R3-S4, 22.2R3-S5, 22.3R1, 22.3R3-S2, 22.3R3-S3, 22.3R3-S4, 22.4R3, 22.4R3-S2, 22.4R3-S3, 22.4R3-S4, 23.2R1, 23.2R2, 23.2R2-S1, 23.2R2-S2, 23.4R1, 23.4R1-S2, 23.4R2, 23.4R2-S1, 24.1R1, 24.2R1, 24.2R1-S1 et 24.2R2 | ||
| Juniper Networks | Junos OS Evolved | Junos OS Evolved versions antérieures à 20.4R3-S9-EVO, 21.2R3-S7-EVO, 21.2R3-S8-EVO, 21.3R3-S5-EVO, 21.4R3-S5-EVO, 21.4R3-S7-EVO, 21.4R3-S8-EVO, 21.4R3-S9-EVO, 22.1R3-S5-EVO, 22.1R3-S6-EVO, 22.2R3-EVO, 22.2R3-S3-EVO, 22.2R3-S4-EVO, 22.3R3-EVO, 22.3R3-S2-EVO, 22.3R3-S3-EVO, 22.3R3-S4-EVO, 22.4R2-EVO, 22.4R3-EVO, 22.4R3-S1-EVO, 22.4R3-S2-EVO, 22.4R3-S3-EVO, 23.2R1-EVO, 23.2R1-S2-EVO, 23.2R2-EVO, 23.2R2-S1-EVO, 23.2R2-S2-EVO, 23.4R1-EVO, 23.4R1-S1-EVO, 23.4R1-S2-EVO, 23.4R2-EVO, 23.4R2-S1-EVO, 24.2R1-EVO, 24.2R1-EVO et 24.2R2-EVO | ||
| Juniper Networks | N/A | Junos Space 24.1R1 sans le correctif de sécurité Patch V1 et V2 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Junos OS versions ant\u00e9rieures \u00e0 21.2R3-S1, 21.2R3-S7, 21.2R3-S8, 21.3R3, 21.3R3-S1, 21.4R2, 21.4R3, 21.4R3-S6, 21.4R3-S7, 21.4R3-S8, 21.4R3-S9, 22.1R1, 22.1R2, 22.1R3-S5, 22.1R3-S6, 22.2R1-S2, 22.2R2, 22.2R3-S3, 22.2R3-S4, 22.2R3-S5, 22.3R1, 22.3R3-S2, 22.3R3-S3, 22.3R3-S4, 22.4R3, 22.4R3-S2, 22.4R3-S3, 22.4R3-S4, 23.2R1, 23.2R2, 23.2R2-S1, 23.2R2-S2, 23.4R1, 23.4R1-S2, 23.4R2, 23.4R2-S1, 24.1R1, 24.2R1, 24.2R1-S1 et 24.2R2",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS Evolved versions ant\u00e9rieures \u00e0 20.4R3-S9-EVO, 21.2R3-S7-EVO, 21.2R3-S8-EVO, 21.3R3-S5-EVO, 21.4R3-S5-EVO, 21.4R3-S7-EVO, 21.4R3-S8-EVO, 21.4R3-S9-EVO, 22.1R3-S5-EVO, 22.1R3-S6-EVO, 22.2R3-EVO, 22.2R3-S3-EVO, 22.2R3-S4-EVO, 22.3R3-EVO, 22.3R3-S2-EVO, 22.3R3-S3-EVO, 22.3R3-S4-EVO, 22.4R2-EVO, 22.4R3-EVO, 22.4R3-S1-EVO, 22.4R3-S2-EVO, 22.4R3-S3-EVO, 23.2R1-EVO, 23.2R1-S2-EVO, 23.2R2-EVO, 23.2R2-S1-EVO, 23.2R2-S2-EVO, 23.4R1-EVO, 23.4R1-S1-EVO, 23.4R1-S2-EVO, 23.4R2-EVO, 23.4R2-S1-EVO, 24.2R1-EVO, 24.2R1-EVO et 24.2R2-EVO",
"product": {
"name": "Junos OS Evolved",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos Space 24.1R1 sans le correctif de s\u00e9curit\u00e9 Patch V1 et V2",
"product": {
"name": "N/A",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
}
],
"affected_systems_content": "Les versions suivantes de Junos OS et Junos OS Evolved sont \u00e0 para\u00eetre : 22.2R3-S5, 22.3R3-S4, 24.2R2, 24.4R1, 22.2R3-S5-EVO, 22.3R3-S4-EVO, 24.2R2-EVO et 24.4R1-EVO",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2016-1247",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-1247"
},
{
"name": "CVE-2024-47501",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47501"
},
{
"name": "CVE-2024-47496",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47496"
},
{
"name": "CVE-2023-51385",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51385"
},
{
"name": "CVE-2024-47493",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47493"
},
{
"name": "CVE-2024-39515",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39515"
},
{
"name": "CVE-2021-3618",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3618"
},
{
"name": "CVE-2023-31124",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31124"
},
{
"name": "CVE-2023-3823",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3823"
},
{
"name": "CVE-2023-32067",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32067"
},
{
"name": "CVE-2024-39525",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39525"
},
{
"name": "CVE-2024-47498",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47498"
},
{
"name": "CVE-2016-0746",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0746"
},
{
"name": "CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"name": "CVE-2017-20005",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-20005"
},
{
"name": "CVE-2024-39544",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39544"
},
{
"name": "CVE-2016-4450",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-4450"
},
{
"name": "CVE-2023-0568",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0568"
},
{
"name": "CVE-2024-47489",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47489"
},
{
"name": "CVE-2022-41741",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41741"
},
{
"name": "CVE-2024-47494",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47494"
},
{
"name": "CVE-2024-39534",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39534"
},
{
"name": "CVE-2024-47499",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47499"
},
{
"name": "CVE-2022-41742",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41742"
},
{
"name": "CVE-2024-39526",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39526"
},
{
"name": "CVE-2024-39547",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39547"
},
{
"name": "CVE-2023-31147",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31147"
},
{
"name": "CVE-2024-47495",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47495"
},
{
"name": "CVE-2019-20372",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20372"
},
{
"name": "CVE-2016-0747",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0747"
},
{
"name": "CVE-2021-23017",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23017"
},
{
"name": "CVE-2024-47490",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47490"
},
{
"name": "CVE-2018-16845",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16845"
},
{
"name": "CVE-2024-47491",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47491"
},
{
"name": "CVE-2017-7529",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7529"
},
{
"name": "CVE-2024-39527",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39527"
},
{
"name": "CVE-2024-39563",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39563"
},
{
"name": "CVE-2024-47502",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47502"
},
{
"name": "CVE-2024-39516",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39516"
},
{
"name": "CVE-2024-47503",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47503"
},
{
"name": "CVE-2023-0567",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0567"
},
{
"name": "CVE-2024-47506",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47506"
},
{
"name": "CVE-2023-0662",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0662"
},
{
"name": "CVE-2024-4741",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4741"
},
{
"name": "CVE-2016-0742",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0742"
},
{
"name": "CVE-2024-47504",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47504"
},
{
"name": "CVE-2023-3824",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3824"
},
{
"name": "CVE-2023-31130",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31130"
},
{
"name": "CVE-2024-2511",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2511"
},
{
"name": "CVE-2024-47507",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47507"
},
{
"name": "CVE-2024-47497",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47497"
}
],
"links": [],
"reference": "CERTFR-2024-AVI-0866",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-10-10T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
},
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Juniper Networks. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Juniper Networks",
"vendor_advisories": [
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88112",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-Evolved-Multiple-vulnerabilities-resolved-in-c-ares-1-18-1"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88121",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-Due-to-a-race-condition-AgentD-process-causes-a-memory-corruption-and-FPC-reset-CVE-2024-47494"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88104",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-SRX-Series-Low-privileged-user-able-to-access-sensitive-information-on-file-system-CVE-2024-39527"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88107",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-Multiple-vulnerabilities-resolved-in-OpenSSL"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88105",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-Evolved-Connections-to-the-network-and-broadcast-address-accepted-CVE-2024-39534"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88134",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-SRX5000-Series-Receipt-of-a-specific-malformed-packet-will-cause-a-flowd-crash-CVE-2024-47504"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88123",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-MX-Series-The-PFE-will-crash-on-running-specific-command-CVE-2024-47496"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88128",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-Evolved-QFX5000-Series-Configured-MAC-learning-and-move-limits-are-not-in-effect-CVE-2024-47498"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88106",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-Evolved-Low-privileged-local-user-able-to-view-NETCONF-traceoptions-files-CVE-2024-39544"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88136",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-Evolved-Specific-low-privileged-CLI-commands-and-SNMP-GET-requests-can-trigger-a-resource-leak"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88110",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-Space-Remote-Command-Execution-RCE-vulnerability-in-web-application-CVE-2024-39563"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88122",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-Evolved-In-a-dual-RE-scenario-a-locally-authenticated-attacker-with-shell-privileges-can-take-over-the-device-CVE-2024-47495"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88124",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-SRX-Series-QFX-Series-MX-Series-and-EX-Series-Receiving-specific-HTTPS-traffic-causes-resource-exhaustion-CVE-2024-47497"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88111",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-Evolved-ACX-Series-Receipt-of-specific-transit-protocol-packets-is-incorrectly-processed-by-the-RE-CVE-2024-47489"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88108",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-cRPD-Receipt-of-crafted-TCP-traffic-can-trigger-high-CPU-utilization-CVE-2024-39547"
},
{
"published_at": "2024-10-16",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88100",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-Junos-OS-and-Junos-OS-Evolved-Receipt-of-a-specifically-malformed-BGP-packet-causes-RPD-crash-when-segment-routing-is-enabled-CVE-2024-39516"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88131",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-MX304-MX-with-MPC10-11-LC9600-and-EX9200-with-EX9200-15C-In-a-VPLS-or-Junos-Fusion-scenario-specific-show-commands-cause-an-FPC-crash-CVE-2024-47501"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88099",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-With-BGP-traceoptions-enabled-receipt-of-specially-crafted-BGP-update-causes-RPD-crash-CVE-2024-39515"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88135",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-Multiple-vulnerabilities-in-OSS-component-nginx-resolved"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88102",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-When-BGP-nexthop-traceoptions-is-enabled-receipt-of-specially-crafted-BGP-packet-causes-RPD-crash-CVE-2024-39525"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88116",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-Receipt-of-a-specific-malformed-BGP-path-attribute-leads-to-an-RPD-crash-CVE-2024-47491"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88097",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-Space-OS-command-injection-vulnerability-in-OpenSSH-CVE-2023-51385"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88133",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-SRX4600-and-SRX5000-Series-Sequence-of-specific-PIM-packets-causes-a-flowd-crash-CVE-2024-47503"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88137",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-SRX-Series-A-large-amount-of-traffic-being-processed-by-ATP-Cloud-can-lead-to-a-PFE-crash-CVE-2024-47506"
},
{
"published_at": "2024-10-15",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88119",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-SRX5K-SRX4600-and-MX-Series-Trio-based-FPCs-Continuous-physical-interface-flaps-causes-local-FPC-to-crash-CVE-2024-47493"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88103",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-MX-Series-with-MPC10-MPC11-LC9600-MX304-EX9200-PTX-Series-Receipt-of-malformed-DHCP-packets-causes-interfaces-to-stop-processing-packets-CVE-2024-39526"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88138",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-BGP-update-message-containing-aggregator-attribute-with-an-ASN-value-of-zero-0-is-accepted-CVE-2024-47507"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88129",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-In-a-BMP-scenario-receipt-of-a-malformed-AS-PATH-attribute-can-cause-an-RPD-core-CVE-2024-47499"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88115",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-Evolved-ACX-7000-Series-Receipt-of-specific-transit-MPLS-packets-causes-resources-to-be-exhausted-CVE-2024-47490"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88120",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-J-Web-Multiple-vulnerabilities-resolved-in-PHP-software"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88132",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-Evolved-TCP-session-state-is-not-always-cleared-on-the-Routing-Engine-CVE-2024-47502"
}
]
}
CERTFR-2018-AVI-535
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans Nginx. Elles permettent à un attaquant de provoquer un déni de service à distance et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Nginx versions ant\u00e9rieures \u00e0 1.15.6 et 1.14.1",
"product": {
"name": "N/A",
"vendor": {
"name": "Nginx",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2018-16844",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16844"
},
{
"name": "CVE-2018-16843",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16843"
},
{
"name": "CVE-2018-16845",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16845"
}
],
"links": [],
"reference": "CERTFR-2018-AVI-535",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2018-11-07T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Nginx. Elles\npermettent \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance et\nune atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Nginx",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Nginx CVE-2018-16843, CVE-2018-16844 du 6 novembre 2018",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html?_ga=2.53242600.1560703116.1541576907-1155548486.1533906360"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Nginx CVE-2018-16845 du 6 novembre 2018",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html?_ga=2.53242600.1560703116.1541576907-1155548486.1533906360"
}
]
}
CERTFR-2021-AVI-719
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits Apple. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Apple | N/A | tvOS versions antérieures à 15.0 | ||
| Apple | N/A | iTunes pour Windows versions antérieures à 12.12 | ||
| Apple | N/A | Xcode versions antérieures à 13.0 | ||
| Apple | N/A | iPadOS versions antérieures à 15.0 | ||
| Apple | N/A | watchOS versions antérieures à 8.0 | ||
| Apple | N/A | iOS versions antérieures à 15.0 | ||
| Apple | Safari | Safari versions antérieures à 15.0 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "tvOS versions ant\u00e9rieures \u00e0 15.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iTunes pour Windows versions ant\u00e9rieures \u00e0 12.12",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Xcode versions ant\u00e9rieures \u00e0 13.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iPadOS versions ant\u00e9rieures \u00e0 15.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "watchOS versions ant\u00e9rieures \u00e0 8.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iOS versions ant\u00e9rieures \u00e0 15.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Safari versions ant\u00e9rieures \u00e0 15.0",
"product": {
"name": "Safari",
"vendor": {
"name": "Apple",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2021-30850",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30850"
},
{
"name": "CVE-2021-30849",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30849"
},
{
"name": "CVE-2021-30841",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30841"
},
{
"name": "CVE-2018-16844",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16844"
},
{
"name": "CVE-2021-30811",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30811"
},
{
"name": "CVE-2021-30837",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30837"
},
{
"name": "CVE-2016-0746",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0746"
},
{
"name": "CVE-2021-30847",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30847"
},
{
"name": "CVE-2021-30835",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30835"
},
{
"name": "CVE-2018-16843",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16843"
},
{
"name": "CVE-2021-30855",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30855"
},
{
"name": "CVE-2019-20372",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20372"
},
{
"name": "CVE-2016-0747",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0747"
},
{
"name": "CVE-2021-30826",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30826"
},
{
"name": "CVE-2021-30846",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30846"
},
{
"name": "CVE-2021-30848",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30848"
},
{
"name": "CVE-2021-30854",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30854"
},
{
"name": "CVE-2018-16845",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16845"
},
{
"name": "CVE-2021-30810",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30810"
},
{
"name": "CVE-2017-7529",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7529"
},
{
"name": "CVE-2021-30819",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30819"
},
{
"name": "CVE-2021-30863",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30863"
},
{
"name": "CVE-2021-30815",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30815"
},
{
"name": "CVE-2021-30825",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30825"
},
{
"name": "CVE-2021-30857",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30857"
},
{
"name": "CVE-2021-30838",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30838"
},
{
"name": "CVE-2016-0742",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0742"
},
{
"name": "CVE-2021-30851",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30851"
},
{
"name": "CVE-2013-0340",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0340"
},
{
"name": "CVE-2021-30842",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30842"
},
{
"name": "CVE-2021-30843",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30843"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212817 du 20 septembre 2021",
"url": "https://support.apple.com/en-us/HT212817"
}
],
"reference": "CERTFR-2021-AVI-719",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2021-09-21T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Apple.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire, un d\u00e9ni de service \u00e0 distance et un\ncontournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Apple",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212818 du 20 septembre 2021",
"url": "https://support.apple.com/en-us/HT212818"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212819 du 20 septembre 2021",
"url": "https://support.apple.com/en-us/HT212819"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212816 du 20 septembre 2021",
"url": "https://support.apple.com/en-us/HT212816"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212817 du 20 septembre 2021",
"url": null
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212814 du 20 septembre 2021",
"url": "https://support.apple.com/en-us/HT212814"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212815 du 20 septembre 2021",
"url": "https://support.apple.com/en-us/HT212815"
}
]
}
CERTFR-2021-AVI-719
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits Apple. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Apple | N/A | tvOS versions antérieures à 15.0 | ||
| Apple | N/A | iTunes pour Windows versions antérieures à 12.12 | ||
| Apple | N/A | Xcode versions antérieures à 13.0 | ||
| Apple | N/A | iPadOS versions antérieures à 15.0 | ||
| Apple | N/A | watchOS versions antérieures à 8.0 | ||
| Apple | N/A | iOS versions antérieures à 15.0 | ||
| Apple | Safari | Safari versions antérieures à 15.0 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "tvOS versions ant\u00e9rieures \u00e0 15.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iTunes pour Windows versions ant\u00e9rieures \u00e0 12.12",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Xcode versions ant\u00e9rieures \u00e0 13.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iPadOS versions ant\u00e9rieures \u00e0 15.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "watchOS versions ant\u00e9rieures \u00e0 8.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iOS versions ant\u00e9rieures \u00e0 15.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Safari versions ant\u00e9rieures \u00e0 15.0",
"product": {
"name": "Safari",
"vendor": {
"name": "Apple",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2021-30850",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30850"
},
{
"name": "CVE-2021-30849",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30849"
},
{
"name": "CVE-2021-30841",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30841"
},
{
"name": "CVE-2018-16844",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16844"
},
{
"name": "CVE-2021-30811",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30811"
},
{
"name": "CVE-2021-30837",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30837"
},
{
"name": "CVE-2016-0746",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0746"
},
{
"name": "CVE-2021-30847",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30847"
},
{
"name": "CVE-2021-30835",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30835"
},
{
"name": "CVE-2018-16843",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16843"
},
{
"name": "CVE-2021-30855",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30855"
},
{
"name": "CVE-2019-20372",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20372"
},
{
"name": "CVE-2016-0747",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0747"
},
{
"name": "CVE-2021-30826",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30826"
},
{
"name": "CVE-2021-30846",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30846"
},
{
"name": "CVE-2021-30848",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30848"
},
{
"name": "CVE-2021-30854",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30854"
},
{
"name": "CVE-2018-16845",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16845"
},
{
"name": "CVE-2021-30810",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30810"
},
{
"name": "CVE-2017-7529",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7529"
},
{
"name": "CVE-2021-30819",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30819"
},
{
"name": "CVE-2021-30863",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30863"
},
{
"name": "CVE-2021-30815",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30815"
},
{
"name": "CVE-2021-30825",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30825"
},
{
"name": "CVE-2021-30857",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30857"
},
{
"name": "CVE-2021-30838",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30838"
},
{
"name": "CVE-2016-0742",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0742"
},
{
"name": "CVE-2021-30851",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30851"
},
{
"name": "CVE-2013-0340",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-0340"
},
{
"name": "CVE-2021-30842",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30842"
},
{
"name": "CVE-2021-30843",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30843"
}
],
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212817 du 20 septembre 2021",
"url": "https://support.apple.com/en-us/HT212817"
}
],
"reference": "CERTFR-2021-AVI-719",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2021-09-21T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Apple.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire, un d\u00e9ni de service \u00e0 distance et un\ncontournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Apple",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212818 du 20 septembre 2021",
"url": "https://support.apple.com/en-us/HT212818"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212819 du 20 septembre 2021",
"url": "https://support.apple.com/en-us/HT212819"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212816 du 20 septembre 2021",
"url": "https://support.apple.com/en-us/HT212816"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212817 du 20 septembre 2021",
"url": null
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212814 du 20 septembre 2021",
"url": "https://support.apple.com/en-us/HT212814"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Apple HT212815 du 20 septembre 2021",
"url": "https://support.apple.com/en-us/HT212815"
}
]
}
CERTFR-2024-AVI-0866
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits Juniper Networks. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Les versions suivantes de Junos OS et Junos OS Evolved sont à paraître : 22.2R3-S5, 22.3R3-S4, 24.2R2, 24.4R1, 22.2R3-S5-EVO, 22.3R3-S4-EVO, 24.2R2-EVO et 24.4R1-EVO
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Juniper Networks | Junos OS | Junos OS versions antérieures à 21.2R3-S1, 21.2R3-S7, 21.2R3-S8, 21.3R3, 21.3R3-S1, 21.4R2, 21.4R3, 21.4R3-S6, 21.4R3-S7, 21.4R3-S8, 21.4R3-S9, 22.1R1, 22.1R2, 22.1R3-S5, 22.1R3-S6, 22.2R1-S2, 22.2R2, 22.2R3-S3, 22.2R3-S4, 22.2R3-S5, 22.3R1, 22.3R3-S2, 22.3R3-S3, 22.3R3-S4, 22.4R3, 22.4R3-S2, 22.4R3-S3, 22.4R3-S4, 23.2R1, 23.2R2, 23.2R2-S1, 23.2R2-S2, 23.4R1, 23.4R1-S2, 23.4R2, 23.4R2-S1, 24.1R1, 24.2R1, 24.2R1-S1 et 24.2R2 | ||
| Juniper Networks | Junos OS Evolved | Junos OS Evolved versions antérieures à 20.4R3-S9-EVO, 21.2R3-S7-EVO, 21.2R3-S8-EVO, 21.3R3-S5-EVO, 21.4R3-S5-EVO, 21.4R3-S7-EVO, 21.4R3-S8-EVO, 21.4R3-S9-EVO, 22.1R3-S5-EVO, 22.1R3-S6-EVO, 22.2R3-EVO, 22.2R3-S3-EVO, 22.2R3-S4-EVO, 22.3R3-EVO, 22.3R3-S2-EVO, 22.3R3-S3-EVO, 22.3R3-S4-EVO, 22.4R2-EVO, 22.4R3-EVO, 22.4R3-S1-EVO, 22.4R3-S2-EVO, 22.4R3-S3-EVO, 23.2R1-EVO, 23.2R1-S2-EVO, 23.2R2-EVO, 23.2R2-S1-EVO, 23.2R2-S2-EVO, 23.4R1-EVO, 23.4R1-S1-EVO, 23.4R1-S2-EVO, 23.4R2-EVO, 23.4R2-S1-EVO, 24.2R1-EVO, 24.2R1-EVO et 24.2R2-EVO | ||
| Juniper Networks | N/A | Junos Space 24.1R1 sans le correctif de sécurité Patch V1 et V2 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Junos OS versions ant\u00e9rieures \u00e0 21.2R3-S1, 21.2R3-S7, 21.2R3-S8, 21.3R3, 21.3R3-S1, 21.4R2, 21.4R3, 21.4R3-S6, 21.4R3-S7, 21.4R3-S8, 21.4R3-S9, 22.1R1, 22.1R2, 22.1R3-S5, 22.1R3-S6, 22.2R1-S2, 22.2R2, 22.2R3-S3, 22.2R3-S4, 22.2R3-S5, 22.3R1, 22.3R3-S2, 22.3R3-S3, 22.3R3-S4, 22.4R3, 22.4R3-S2, 22.4R3-S3, 22.4R3-S4, 23.2R1, 23.2R2, 23.2R2-S1, 23.2R2-S2, 23.4R1, 23.4R1-S2, 23.4R2, 23.4R2-S1, 24.1R1, 24.2R1, 24.2R1-S1 et 24.2R2",
"product": {
"name": "Junos OS",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos OS Evolved versions ant\u00e9rieures \u00e0 20.4R3-S9-EVO, 21.2R3-S7-EVO, 21.2R3-S8-EVO, 21.3R3-S5-EVO, 21.4R3-S5-EVO, 21.4R3-S7-EVO, 21.4R3-S8-EVO, 21.4R3-S9-EVO, 22.1R3-S5-EVO, 22.1R3-S6-EVO, 22.2R3-EVO, 22.2R3-S3-EVO, 22.2R3-S4-EVO, 22.3R3-EVO, 22.3R3-S2-EVO, 22.3R3-S3-EVO, 22.3R3-S4-EVO, 22.4R2-EVO, 22.4R3-EVO, 22.4R3-S1-EVO, 22.4R3-S2-EVO, 22.4R3-S3-EVO, 23.2R1-EVO, 23.2R1-S2-EVO, 23.2R2-EVO, 23.2R2-S1-EVO, 23.2R2-S2-EVO, 23.4R1-EVO, 23.4R1-S1-EVO, 23.4R1-S2-EVO, 23.4R2-EVO, 23.4R2-S1-EVO, 24.2R1-EVO, 24.2R1-EVO et 24.2R2-EVO",
"product": {
"name": "Junos OS Evolved",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
},
{
"description": "Junos Space 24.1R1 sans le correctif de s\u00e9curit\u00e9 Patch V1 et V2",
"product": {
"name": "N/A",
"vendor": {
"name": "Juniper Networks",
"scada": false
}
}
}
],
"affected_systems_content": "Les versions suivantes de Junos OS et Junos OS Evolved sont \u00e0 para\u00eetre : 22.2R3-S5, 22.3R3-S4, 24.2R2, 24.4R1, 22.2R3-S5-EVO, 22.3R3-S4-EVO, 24.2R2-EVO et 24.4R1-EVO",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2016-1247",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-1247"
},
{
"name": "CVE-2024-47501",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47501"
},
{
"name": "CVE-2024-47496",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47496"
},
{
"name": "CVE-2023-51385",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51385"
},
{
"name": "CVE-2024-47493",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47493"
},
{
"name": "CVE-2024-39515",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39515"
},
{
"name": "CVE-2021-3618",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3618"
},
{
"name": "CVE-2023-31124",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31124"
},
{
"name": "CVE-2023-3823",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3823"
},
{
"name": "CVE-2023-32067",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32067"
},
{
"name": "CVE-2024-39525",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39525"
},
{
"name": "CVE-2024-47498",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47498"
},
{
"name": "CVE-2016-0746",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0746"
},
{
"name": "CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"name": "CVE-2017-20005",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-20005"
},
{
"name": "CVE-2024-39544",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39544"
},
{
"name": "CVE-2016-4450",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-4450"
},
{
"name": "CVE-2023-0568",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0568"
},
{
"name": "CVE-2024-47489",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47489"
},
{
"name": "CVE-2022-41741",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41741"
},
{
"name": "CVE-2024-47494",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47494"
},
{
"name": "CVE-2024-39534",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39534"
},
{
"name": "CVE-2024-47499",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47499"
},
{
"name": "CVE-2022-41742",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41742"
},
{
"name": "CVE-2024-39526",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39526"
},
{
"name": "CVE-2024-39547",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39547"
},
{
"name": "CVE-2023-31147",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31147"
},
{
"name": "CVE-2024-47495",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47495"
},
{
"name": "CVE-2019-20372",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-20372"
},
{
"name": "CVE-2016-0747",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0747"
},
{
"name": "CVE-2021-23017",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23017"
},
{
"name": "CVE-2024-47490",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47490"
},
{
"name": "CVE-2018-16845",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16845"
},
{
"name": "CVE-2024-47491",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47491"
},
{
"name": "CVE-2017-7529",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7529"
},
{
"name": "CVE-2024-39527",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39527"
},
{
"name": "CVE-2024-39563",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39563"
},
{
"name": "CVE-2024-47502",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47502"
},
{
"name": "CVE-2024-39516",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39516"
},
{
"name": "CVE-2024-47503",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47503"
},
{
"name": "CVE-2023-0567",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0567"
},
{
"name": "CVE-2024-47506",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47506"
},
{
"name": "CVE-2023-0662",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0662"
},
{
"name": "CVE-2024-4741",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4741"
},
{
"name": "CVE-2016-0742",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0742"
},
{
"name": "CVE-2024-47504",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47504"
},
{
"name": "CVE-2023-3824",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3824"
},
{
"name": "CVE-2023-31130",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31130"
},
{
"name": "CVE-2024-2511",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2511"
},
{
"name": "CVE-2024-47507",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47507"
},
{
"name": "CVE-2024-47497",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47497"
}
],
"links": [],
"reference": "CERTFR-2024-AVI-0866",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-10-10T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
},
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Juniper Networks. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Juniper Networks",
"vendor_advisories": [
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88112",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-Evolved-Multiple-vulnerabilities-resolved-in-c-ares-1-18-1"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88121",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-Due-to-a-race-condition-AgentD-process-causes-a-memory-corruption-and-FPC-reset-CVE-2024-47494"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88104",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-SRX-Series-Low-privileged-user-able-to-access-sensitive-information-on-file-system-CVE-2024-39527"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88107",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-Multiple-vulnerabilities-resolved-in-OpenSSL"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88105",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-Evolved-Connections-to-the-network-and-broadcast-address-accepted-CVE-2024-39534"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88134",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-SRX5000-Series-Receipt-of-a-specific-malformed-packet-will-cause-a-flowd-crash-CVE-2024-47504"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88123",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-MX-Series-The-PFE-will-crash-on-running-specific-command-CVE-2024-47496"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88128",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-Evolved-QFX5000-Series-Configured-MAC-learning-and-move-limits-are-not-in-effect-CVE-2024-47498"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88106",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-Evolved-Low-privileged-local-user-able-to-view-NETCONF-traceoptions-files-CVE-2024-39544"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88136",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-Evolved-Specific-low-privileged-CLI-commands-and-SNMP-GET-requests-can-trigger-a-resource-leak"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88110",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-Space-Remote-Command-Execution-RCE-vulnerability-in-web-application-CVE-2024-39563"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88122",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-Evolved-In-a-dual-RE-scenario-a-locally-authenticated-attacker-with-shell-privileges-can-take-over-the-device-CVE-2024-47495"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88124",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-SRX-Series-QFX-Series-MX-Series-and-EX-Series-Receiving-specific-HTTPS-traffic-causes-resource-exhaustion-CVE-2024-47497"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88111",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-Evolved-ACX-Series-Receipt-of-specific-transit-protocol-packets-is-incorrectly-processed-by-the-RE-CVE-2024-47489"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88108",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-cRPD-Receipt-of-crafted-TCP-traffic-can-trigger-high-CPU-utilization-CVE-2024-39547"
},
{
"published_at": "2024-10-16",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88100",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-Junos-OS-and-Junos-OS-Evolved-Receipt-of-a-specifically-malformed-BGP-packet-causes-RPD-crash-when-segment-routing-is-enabled-CVE-2024-39516"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88131",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-MX304-MX-with-MPC10-11-LC9600-and-EX9200-with-EX9200-15C-In-a-VPLS-or-Junos-Fusion-scenario-specific-show-commands-cause-an-FPC-crash-CVE-2024-47501"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88099",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-With-BGP-traceoptions-enabled-receipt-of-specially-crafted-BGP-update-causes-RPD-crash-CVE-2024-39515"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88135",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-Multiple-vulnerabilities-in-OSS-component-nginx-resolved"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88102",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-When-BGP-nexthop-traceoptions-is-enabled-receipt-of-specially-crafted-BGP-packet-causes-RPD-crash-CVE-2024-39525"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88116",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-Receipt-of-a-specific-malformed-BGP-path-attribute-leads-to-an-RPD-crash-CVE-2024-47491"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88097",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-Space-OS-command-injection-vulnerability-in-OpenSSH-CVE-2023-51385"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88133",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-SRX4600-and-SRX5000-Series-Sequence-of-specific-PIM-packets-causes-a-flowd-crash-CVE-2024-47503"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88137",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-SRX-Series-A-large-amount-of-traffic-being-processed-by-ATP-Cloud-can-lead-to-a-PFE-crash-CVE-2024-47506"
},
{
"published_at": "2024-10-15",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88119",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-SRX5K-SRX4600-and-MX-Series-Trio-based-FPCs-Continuous-physical-interface-flaps-causes-local-FPC-to-crash-CVE-2024-47493"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88103",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-MX-Series-with-MPC10-MPC11-LC9600-MX304-EX9200-PTX-Series-Receipt-of-malformed-DHCP-packets-causes-interfaces-to-stop-processing-packets-CVE-2024-39526"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88138",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-BGP-update-message-containing-aggregator-attribute-with-an-ASN-value-of-zero-0-is-accepted-CVE-2024-47507"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88129",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-In-a-BMP-scenario-receipt-of-a-malformed-AS-PATH-attribute-can-cause-an-RPD-core-CVE-2024-47499"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88115",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-Evolved-ACX-7000-Series-Receipt-of-specific-transit-MPLS-packets-causes-resources-to-be-exhausted-CVE-2024-47490"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88120",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-J-Web-Multiple-vulnerabilities-resolved-in-PHP-software"
},
{
"published_at": "2024-10-09",
"title": "Bulletin de s\u00e9curit\u00e9 Juniper Networks JSA88132",
"url": "https://supportportal.juniper.net/s/article/2024-10-Security-Bulletin-Junos-OS-Evolved-TCP-session-state-is-not-always-cleared-on-the-Routing-Engine-CVE-2024-47502"
}
]
}
RHSA-2018:3652
Vulnerability from csaf_redhat - Published: 2018-11-26 12:08 - Updated: 2025-11-21 18:06Summary
Red Hat Security Advisory: rh-nginx18-nginx security update
Notes
Topic
An update for rh-nginx18-nginx is now available for Red Hat Software Collections.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.
Security Fix(es):
* nginx: Denial of service and memory disclosure via mp4 module (CVE-2018-16845)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank the Nginx project for reporting this issue.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rh-nginx18-nginx is now available for Red Hat Software Collections.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.\n\nSecurity Fix(es):\n\n* nginx: Denial of service and memory disclosure via mp4 module (CVE-2018-16845)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nRed Hat would like to thank the Nginx project for reporting this issue.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:3652",
"url": "https://access.redhat.com/errata/RHSA-2018:3652"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1644508",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644508"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_3652.json"
}
],
"title": "Red Hat Security Advisory: rh-nginx18-nginx security update",
"tracking": {
"current_release_date": "2025-11-21T18:06:59+00:00",
"generator": {
"date": "2025-11-21T18:06:59+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2018:3652",
"initial_release_date": "2018-11-26T12:08:06+00:00",
"revision_history": [
{
"date": "2018-11-26T12:08:06+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-11-26T12:08:06+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:06:59+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Software Collections"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"product": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"product_id": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx18-nginx@1.8.1-1.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"product": {
"name": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"product_id": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx18-nginx-debuginfo@1.8.1-1.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64",
"product": {
"name": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64",
"product_id": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx18-nginx-debuginfo@1.8.1-1.el6.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64",
"product": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64",
"product_id": "rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx18-nginx@1.8.1-1.el6.1?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"product": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"product_id": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx18-nginx@1.8.1-1.el7.1?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx18-nginx-1:1.8.1-1.el6.1.src",
"product": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el6.1.src",
"product_id": "rh-nginx18-nginx-1:1.8.1-1.el6.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx18-nginx@1.8.1-1.el6.1?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el6.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.src"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el6.1.src",
"relates_to_product_reference": "6Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el6.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.src"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el6.1.src",
"relates_to_product_reference": "6Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.src"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.src"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.src"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.src"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.src"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Nginx project"
]
}
],
"cve": "CVE-2018-16845",
"cwe": {
"id": "CWE-201",
"name": "Insertion of Sensitive Information Into Sent Data"
},
"discovery_date": "2018-10-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1644508"
}
],
"notes": [
{
"category": "description",
"text": "An instance of missing input sanitization was found in the mp4 module for nginx. A local attacker could create a specially crafted video file that, when streamed by the server, would cause a denial of service (server crash or hang) and, possibly, information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nginx: Denial of service and memory disclosure via mp4 module",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.src",
"6Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.src",
"6Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-16845"
},
{
"category": "external",
"summary": "RHBZ#1644508",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644508"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-16845",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16845"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-16845",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16845"
},
{
"category": "external",
"summary": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html"
}
],
"release_date": "2018-11-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-11-26T12:08:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe rh-nginx18-nginx service must be restarted for this update to take effect.",
"product_ids": [
"6Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.src",
"6Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.src",
"6Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:3652"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.src",
"6Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.src",
"6Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "nginx: Denial of service and memory disclosure via mp4 module"
}
]
}
RHSA-2018:3653
Vulnerability from csaf_redhat - Published: 2018-11-26 12:27 - Updated: 2025-11-21 18:06Summary
Red Hat Security Advisory: rh-nginx110-nginx security update
Notes
Topic
An update for rh-nginx110-nginx is now available for Red Hat Software Collections.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.
Security Fix(es):
* nginx: Denial of service and memory disclosure via mp4 module (CVE-2018-16845)
* nginx: Excessive memory consumption via flaw in HTTP/2 implementation (CVE-2018-16843)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank the Nginx project for reporting these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rh-nginx110-nginx is now available for Red Hat Software Collections.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.\n\nSecurity Fix(es):\n\n* nginx: Denial of service and memory disclosure via mp4 module (CVE-2018-16845)\n\n* nginx: Excessive memory consumption via flaw in HTTP/2 implementation (CVE-2018-16843)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nRed Hat would like to thank the Nginx project for reporting these issues.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:3653",
"url": "https://access.redhat.com/errata/RHSA-2018:3653"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1644508",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644508"
},
{
"category": "external",
"summary": "1644511",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644511"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_3653.json"
}
],
"title": "Red Hat Security Advisory: rh-nginx110-nginx security update",
"tracking": {
"current_release_date": "2025-11-21T18:06:59+00:00",
"generator": {
"date": "2025-11-21T18:06:59+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2018:3653",
"initial_release_date": "2018-11-26T12:27:39+00:00",
"revision_history": [
{
"date": "2018-11-26T12:27:39+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-11-26T12:27:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:06:59+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Software Collections"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"product_id": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx-debuginfo@1.10.2-8.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"product_id": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx@1.10.2-8.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"product_id": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx-mod-http-xslt-filter@1.10.2-8.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"product_id": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx-mod-http-image-filter@1.10.2-8.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"product_id": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx-mod-mail@1.10.2-8.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"product_id": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx-mod-http-perl@1.10.2-8.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"product_id": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx-mod-stream@1.10.2-8.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"product_id": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx-mod-http-xslt-filter@1.10.2-8.el6.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"product_id": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx-debuginfo@1.10.2-8.el6.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"product_id": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx-mod-stream@1.10.2-8.el6.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"product_id": "rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx@1.10.2-8.el6.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"product_id": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx-mod-mail@1.10.2-8.el6.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"product_id": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx-mod-http-image-filter@1.10.2-8.el6.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"product_id": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx-mod-http-perl@1.10.2-8.el6.1?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"product": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"product_id": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx@1.10.2-8.el7.1?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"product": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"product_id": "rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx@1.10.2-8.el6.1?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el6.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"relates_to_product_reference": "6Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el6.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"relates_to_product_reference": "6Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Nginx project"
]
}
],
"cve": "CVE-2018-16843",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2018-10-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1644511"
}
],
"notes": [
{
"category": "description",
"text": "nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive memory consumption. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the \u0027http2\u0027 option of the \u0027listen\u0027 directive is used in a configuration file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nginx: Excessive memory consumption via flaw in HTTP/2 implementation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of rh-nginx18-nginx as shipped with Red Hat Software Collections as they did not include the vulnerable module ngx_http_v2_module.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-16843"
},
{
"category": "external",
"summary": "RHBZ#1644511",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644511"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-16843",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16843"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-16843",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16843"
},
{
"category": "external",
"summary": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html"
}
],
"release_date": "2018-11-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-11-26T12:27:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe rh-nginx110-nginx service must be restarted for this update to take effect.",
"product_ids": [
"6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:3653"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nginx: Excessive memory consumption via flaw in HTTP/2 implementation"
},
{
"acknowledgments": [
{
"names": [
"the Nginx project"
]
}
],
"cve": "CVE-2018-16845",
"cwe": {
"id": "CWE-201",
"name": "Insertion of Sensitive Information Into Sent Data"
},
"discovery_date": "2018-10-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1644508"
}
],
"notes": [
{
"category": "description",
"text": "An instance of missing input sanitization was found in the mp4 module for nginx. A local attacker could create a specially crafted video file that, when streamed by the server, would cause a denial of service (server crash or hang) and, possibly, information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nginx: Denial of service and memory disclosure via mp4 module",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-16845"
},
{
"category": "external",
"summary": "RHBZ#1644508",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644508"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-16845",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16845"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-16845",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16845"
},
{
"category": "external",
"summary": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html"
}
],
"release_date": "2018-11-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-11-26T12:27:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe rh-nginx110-nginx service must be restarted for this update to take effect.",
"product_ids": [
"6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:3653"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "nginx: Denial of service and memory disclosure via mp4 module"
}
]
}
RHSA-2018_3680
Vulnerability from csaf_redhat - Published: 2018-11-27 09:04 - Updated: 2024-11-15 00:37Summary
Red Hat Security Advisory: rh-nginx112-nginx security update
Notes
Topic
An update for rh-nginx112-nginx is now available for Red Hat Software Collections.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.
Security Fix(es):
* nginx: Denial of service and memory disclosure via mp4 module (CVE-2018-16845)
* nginx: Excessive memory consumption via flaw in HTTP/2 implementation (CVE-2018-16843)
* nginx: Excessive CPU usage via flaw in HTTP/2 implementation (CVE-2018-16844)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank the Nginx project for reporting these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rh-nginx112-nginx is now available for Red Hat Software Collections.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.\n\nSecurity Fix(es):\n\n* nginx: Denial of service and memory disclosure via mp4 module (CVE-2018-16845)\n\n* nginx: Excessive memory consumption via flaw in HTTP/2 implementation (CVE-2018-16843)\n\n* nginx: Excessive CPU usage via flaw in HTTP/2 implementation (CVE-2018-16844)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nRed Hat would like to thank the Nginx project for reporting these issues.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:3680",
"url": "https://access.redhat.com/errata/RHSA-2018:3680"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1644508",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644508"
},
{
"category": "external",
"summary": "1644510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644510"
},
{
"category": "external",
"summary": "1644511",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644511"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_3680.json"
}
],
"title": "Red Hat Security Advisory: rh-nginx112-nginx security update",
"tracking": {
"current_release_date": "2024-11-15T00:37:54+00:00",
"generator": {
"date": "2024-11-15T00:37:54+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2018:3680",
"initial_release_date": "2018-11-27T09:04:25+00:00",
"revision_history": [
{
"date": "2018-11-27T09:04:25+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-11-27T09:04:25+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-15T00:37:54+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Software Collections"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"product": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"product_id": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-http-xslt-filter@1.12.1-2.el7.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"product": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"product_id": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-stream@1.12.1-2.el7.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"product": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"product_id": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-http-image-filter@1.12.1-2.el7.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"product": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"product_id": "rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx@1.12.1-2.el7.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"product": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"product_id": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-mail@1.12.1-2.el7.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"product": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"product_id": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-debuginfo@1.12.1-2.el7.1?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"product": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"product_id": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-http-xslt-filter@1.12.1-2.el7.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"product": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"product_id": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-stream@1.12.1-2.el7.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"product": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"product_id": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-http-image-filter@1.12.1-2.el7.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"product": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"product_id": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx@1.12.1-2.el7.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"product": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"product_id": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-mail@1.12.1-2.el7.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"product": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"product_id": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-debuginfo@1.12.1-2.el7.1?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"product": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"product_id": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-http-xslt-filter@1.12.1-2.el7.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"product": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"product_id": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-stream@1.12.1-2.el7.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"product": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"product_id": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-http-image-filter@1.12.1-2.el7.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"product": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"product_id": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx@1.12.1-2.el7.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"product": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"product_id": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-mail@1.12.1-2.el7.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"product": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"product_id": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-debuginfo@1.12.1-2.el7.1?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"product": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"product_id": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx@1.12.1-2.el7.1?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"product": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"product_id": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-http-xslt-filter@1.12.1-2.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"product": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"product_id": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-stream@1.12.1-2.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"product": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"product_id": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-http-image-filter@1.12.1-2.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"product": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"product_id": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx@1.12.1-2.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"product": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"product_id": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-mail@1.12.1-2.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"product": {
"name": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"product_id": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-http-perl@1.12.1-2.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"product": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"product_id": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-debuginfo@1.12.1-2.el7.1?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Nginx project"
]
}
],
"cve": "CVE-2018-16843",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2018-10-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1644511"
}
],
"notes": [
{
"category": "description",
"text": "nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive memory consumption. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the \u0027http2\u0027 option of the \u0027listen\u0027 directive is used in a configuration file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nginx: Excessive memory consumption via flaw in HTTP/2 implementation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of rh-nginx18-nginx as shipped with Red Hat Software Collections as they did not include the vulnerable module ngx_http_v2_module.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-16843"
},
{
"category": "external",
"summary": "RHBZ#1644511",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644511"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-16843",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16843"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-16843",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16843"
},
{
"category": "external",
"summary": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html"
}
],
"release_date": "2018-11-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-11-27T09:04:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe rh-nginx112-nginx service must be restarted for this update to take effect.",
"product_ids": [
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:3680"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nginx: Excessive memory consumption via flaw in HTTP/2 implementation"
},
{
"acknowledgments": [
{
"names": [
"the Nginx project"
]
}
],
"cve": "CVE-2018-16844",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2018-10-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1644510"
}
],
"notes": [
{
"category": "description",
"text": "nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive CPU usage. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the \u0027http2\u0027 option of the \u0027listen\u0027 directive is used in a configuration file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nginx: Excessive CPU usage via flaw in HTTP/2 implementation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of rh-nginx18-nginx as shipped with Red Hat Software Collections as they did not include the vulnerable module ngx_http_v2_module.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-16844"
},
{
"category": "external",
"summary": "RHBZ#1644510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644510"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-16844",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16844"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-16844",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16844"
},
{
"category": "external",
"summary": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html"
}
],
"release_date": "2018-11-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-11-27T09:04:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe rh-nginx112-nginx service must be restarted for this update to take effect.",
"product_ids": [
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:3680"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nginx: Excessive CPU usage via flaw in HTTP/2 implementation"
},
{
"acknowledgments": [
{
"names": [
"the Nginx project"
]
}
],
"cve": "CVE-2018-16845",
"cwe": {
"id": "CWE-201",
"name": "Insertion of Sensitive Information Into Sent Data"
},
"discovery_date": "2018-10-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1644508"
}
],
"notes": [
{
"category": "description",
"text": "An instance of missing input sanitization was found in the mp4 module for nginx. A local attacker could create a specially crafted video file that, when streamed by the server, would cause a denial of service (server crash or hang) and, possibly, information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nginx: Denial of service and memory disclosure via mp4 module",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-16845"
},
{
"category": "external",
"summary": "RHBZ#1644508",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644508"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-16845",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16845"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-16845",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16845"
},
{
"category": "external",
"summary": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html"
}
],
"release_date": "2018-11-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-11-27T09:04:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe rh-nginx112-nginx service must be restarted for this update to take effect.",
"product_ids": [
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:3680"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "nginx: Denial of service and memory disclosure via mp4 module"
}
]
}
RHSA-2018_3653
Vulnerability from csaf_redhat - Published: 2018-11-26 12:27 - Updated: 2024-11-15 00:37Summary
Red Hat Security Advisory: rh-nginx110-nginx security update
Notes
Topic
An update for rh-nginx110-nginx is now available for Red Hat Software Collections.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.
Security Fix(es):
* nginx: Denial of service and memory disclosure via mp4 module (CVE-2018-16845)
* nginx: Excessive memory consumption via flaw in HTTP/2 implementation (CVE-2018-16843)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank the Nginx project for reporting these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rh-nginx110-nginx is now available for Red Hat Software Collections.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.\n\nSecurity Fix(es):\n\n* nginx: Denial of service and memory disclosure via mp4 module (CVE-2018-16845)\n\n* nginx: Excessive memory consumption via flaw in HTTP/2 implementation (CVE-2018-16843)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nRed Hat would like to thank the Nginx project for reporting these issues.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:3653",
"url": "https://access.redhat.com/errata/RHSA-2018:3653"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1644508",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644508"
},
{
"category": "external",
"summary": "1644511",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644511"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_3653.json"
}
],
"title": "Red Hat Security Advisory: rh-nginx110-nginx security update",
"tracking": {
"current_release_date": "2024-11-15T00:37:44+00:00",
"generator": {
"date": "2024-11-15T00:37:44+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2018:3653",
"initial_release_date": "2018-11-26T12:27:39+00:00",
"revision_history": [
{
"date": "2018-11-26T12:27:39+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-11-26T12:27:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-15T00:37:44+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
}
],
"category": "product_family",
"name": "Red Hat Software Collections"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"product_id": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx-debuginfo@1.10.2-8.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"product_id": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx@1.10.2-8.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"product_id": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx-mod-http-xslt-filter@1.10.2-8.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"product_id": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx-mod-http-image-filter@1.10.2-8.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"product_id": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx-mod-mail@1.10.2-8.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"product_id": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx-mod-http-perl@1.10.2-8.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"product_id": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx-mod-stream@1.10.2-8.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"product_id": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx-mod-http-xslt-filter@1.10.2-8.el6.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"product_id": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx-debuginfo@1.10.2-8.el6.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"product_id": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx-mod-stream@1.10.2-8.el6.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"product_id": "rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx@1.10.2-8.el6.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"product_id": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx-mod-mail@1.10.2-8.el6.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"product_id": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx-mod-http-image-filter@1.10.2-8.el6.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"product": {
"name": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"product_id": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx-mod-http-perl@1.10.2-8.el6.1?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"product": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"product_id": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx@1.10.2-8.el7.1?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"product": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"product_id": "rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx110-nginx@1.10.2-8.el6.1?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el6.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"relates_to_product_reference": "6Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el6.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"relates_to_product_reference": "6Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64"
},
"product_reference": "rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Nginx project"
]
}
],
"cve": "CVE-2018-16843",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2018-10-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1644511"
}
],
"notes": [
{
"category": "description",
"text": "nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive memory consumption. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the \u0027http2\u0027 option of the \u0027listen\u0027 directive is used in a configuration file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nginx: Excessive memory consumption via flaw in HTTP/2 implementation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of rh-nginx18-nginx as shipped with Red Hat Software Collections as they did not include the vulnerable module ngx_http_v2_module.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-16843"
},
{
"category": "external",
"summary": "RHBZ#1644511",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644511"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-16843",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16843"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-16843",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16843"
},
{
"category": "external",
"summary": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html"
}
],
"release_date": "2018-11-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-11-26T12:27:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe rh-nginx110-nginx service must be restarted for this update to take effect.",
"product_ids": [
"6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:3653"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nginx: Excessive memory consumption via flaw in HTTP/2 implementation"
},
{
"acknowledgments": [
{
"names": [
"the Nginx project"
]
}
],
"cve": "CVE-2018-16845",
"cwe": {
"id": "CWE-201",
"name": "Insertion of Sensitive Information Into Sent Data"
},
"discovery_date": "2018-10-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1644508"
}
],
"notes": [
{
"category": "description",
"text": "An instance of missing input sanitization was found in the mp4 module for nginx. A local attacker could create a specially crafted video file that, when streamed by the server, would cause a denial of service (server crash or hang) and, possibly, information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nginx: Denial of service and memory disclosure via mp4 module",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-16845"
},
{
"category": "external",
"summary": "RHBZ#1644508",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644508"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-16845",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16845"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-16845",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16845"
},
{
"category": "external",
"summary": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html"
}
],
"release_date": "2018-11-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-11-26T12:27:39+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe rh-nginx110-nginx service must be restarted for this update to take effect.",
"product_ids": [
"6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:3653"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"6Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.src",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el6.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-debuginfo-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-image-filter-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-perl-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-http-xslt-filter-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-mail-1:1.10.2-8.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx110-nginx-mod-stream-1:1.10.2-8.el7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "nginx: Denial of service and memory disclosure via mp4 module"
}
]
}
RHSA-2018:3681
Vulnerability from csaf_redhat - Published: 2018-11-27 09:18 - Updated: 2025-11-21 18:07Summary
Red Hat Security Advisory: rh-nginx114-nginx security update
Notes
Topic
An update for rh-nginx114-nginx is now available for Red Hat Software Collections.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.
The following packages have been upgraded to a later upstream version: rh-nginx114-nginx (1.14.1). (BZ#1648365)
Security Fix(es):
* nginx: Denial of service and memory disclosure via mp4 module (CVE-2018-16845)
* nginx: Excessive memory consumption via flaw in HTTP/2 implementation (CVE-2018-16843)
* nginx: Excessive CPU usage via flaw in HTTP/2 implementation (CVE-2018-16844)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank the Nginx project for reporting these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rh-nginx114-nginx is now available for Red Hat Software Collections.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.\n\nThe following packages have been upgraded to a later upstream version: rh-nginx114-nginx (1.14.1). (BZ#1648365)\n\nSecurity Fix(es):\n\n* nginx: Denial of service and memory disclosure via mp4 module (CVE-2018-16845)\n\n* nginx: Excessive memory consumption via flaw in HTTP/2 implementation (CVE-2018-16843)\n\n* nginx: Excessive CPU usage via flaw in HTTP/2 implementation (CVE-2018-16844)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nRed Hat would like to thank the Nginx project for reporting these issues.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:3681",
"url": "https://access.redhat.com/errata/RHSA-2018:3681"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1644508",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644508"
},
{
"category": "external",
"summary": "1644510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644510"
},
{
"category": "external",
"summary": "1644511",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644511"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_3681.json"
}
],
"title": "Red Hat Security Advisory: rh-nginx114-nginx security update",
"tracking": {
"current_release_date": "2025-11-21T18:07:03+00:00",
"generator": {
"date": "2025-11-21T18:07:03+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2018:3681",
"initial_release_date": "2018-11-27T09:18:49+00:00",
"revision_history": [
{
"date": "2018-11-27T09:18:49+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-11-27T09:18:49+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:07:03+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Software Collections"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"product": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"product_id": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-stream@1.14.1-1.el7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"product": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"product_id": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-http-xslt-filter@1.14.1-1.el7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"product": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"product_id": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-debuginfo@1.14.1-1.el7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"product": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"product_id": "rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx@1.14.1-1.el7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"product": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"product_id": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-http-perl@1.14.1-1.el7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"product": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"product_id": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-http-image-filter@1.14.1-1.el7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"product": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"product_id": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-mail@1.14.1-1.el7?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"product": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"product_id": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-stream@1.14.1-1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"product": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"product_id": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-http-xslt-filter@1.14.1-1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"product": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"product_id": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-debuginfo@1.14.1-1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"product": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"product_id": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx@1.14.1-1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"product": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"product_id": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-http-perl@1.14.1-1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"product": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"product_id": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-http-image-filter@1.14.1-1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"product": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"product_id": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-mail@1.14.1-1.el7?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"product": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"product_id": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-stream@1.14.1-1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"product": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"product_id": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-http-xslt-filter@1.14.1-1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"product": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"product_id": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-debuginfo@1.14.1-1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"product": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"product_id": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx@1.14.1-1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"product": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"product_id": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-http-perl@1.14.1-1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"product": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"product_id": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-http-image-filter@1.14.1-1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"product": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"product_id": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-mail@1.14.1-1.el7?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.src",
"product": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.src",
"product_id": "rh-nginx114-nginx-1:1.14.1-1.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx@1.14.1-1.el7?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"product": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"product_id": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-stream@1.14.1-1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"product": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"product_id": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-http-xslt-filter@1.14.1-1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"product": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"product_id": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-debuginfo@1.14.1-1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"product": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"product_id": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx@1.14.1-1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"product": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"product_id": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-http-perl@1.14.1-1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"product": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"product_id": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-http-image-filter@1.14.1-1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"product": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"product_id": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-mail@1.14.1-1.el7?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.src",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.src",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Nginx project"
]
}
],
"cve": "CVE-2018-16843",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2018-10-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1644511"
}
],
"notes": [
{
"category": "description",
"text": "nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive memory consumption. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the \u0027http2\u0027 option of the \u0027listen\u0027 directive is used in a configuration file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nginx: Excessive memory consumption via flaw in HTTP/2 implementation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of rh-nginx18-nginx as shipped with Red Hat Software Collections as they did not include the vulnerable module ngx_http_v2_module.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-16843"
},
{
"category": "external",
"summary": "RHBZ#1644511",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644511"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-16843",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16843"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-16843",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16843"
},
{
"category": "external",
"summary": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html"
}
],
"release_date": "2018-11-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-11-27T09:18:49+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe rh-nginx114-nginx service must be restarted for this update to take effect.",
"product_ids": [
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:3681"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nginx: Excessive memory consumption via flaw in HTTP/2 implementation"
},
{
"acknowledgments": [
{
"names": [
"the Nginx project"
]
}
],
"cve": "CVE-2018-16844",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2018-10-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1644510"
}
],
"notes": [
{
"category": "description",
"text": "nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive CPU usage. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the \u0027http2\u0027 option of the \u0027listen\u0027 directive is used in a configuration file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nginx: Excessive CPU usage via flaw in HTTP/2 implementation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of rh-nginx18-nginx as shipped with Red Hat Software Collections as they did not include the vulnerable module ngx_http_v2_module.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-16844"
},
{
"category": "external",
"summary": "RHBZ#1644510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644510"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-16844",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16844"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-16844",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16844"
},
{
"category": "external",
"summary": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html"
}
],
"release_date": "2018-11-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-11-27T09:18:49+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe rh-nginx114-nginx service must be restarted for this update to take effect.",
"product_ids": [
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:3681"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nginx: Excessive CPU usage via flaw in HTTP/2 implementation"
},
{
"acknowledgments": [
{
"names": [
"the Nginx project"
]
}
],
"cve": "CVE-2018-16845",
"cwe": {
"id": "CWE-201",
"name": "Insertion of Sensitive Information Into Sent Data"
},
"discovery_date": "2018-10-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1644508"
}
],
"notes": [
{
"category": "description",
"text": "An instance of missing input sanitization was found in the mp4 module for nginx. A local attacker could create a specially crafted video file that, when streamed by the server, would cause a denial of service (server crash or hang) and, possibly, information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nginx: Denial of service and memory disclosure via mp4 module",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-16845"
},
{
"category": "external",
"summary": "RHBZ#1644508",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644508"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-16845",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16845"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-16845",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16845"
},
{
"category": "external",
"summary": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html"
}
],
"release_date": "2018-11-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-11-27T09:18:49+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe rh-nginx114-nginx service must be restarted for this update to take effect.",
"product_ids": [
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:3681"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "nginx: Denial of service and memory disclosure via mp4 module"
}
]
}
RHSA-2018:3680
Vulnerability from csaf_redhat - Published: 2018-11-27 09:04 - Updated: 2025-11-21 18:07Summary
Red Hat Security Advisory: rh-nginx112-nginx security update
Notes
Topic
An update for rh-nginx112-nginx is now available for Red Hat Software Collections.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.
Security Fix(es):
* nginx: Denial of service and memory disclosure via mp4 module (CVE-2018-16845)
* nginx: Excessive memory consumption via flaw in HTTP/2 implementation (CVE-2018-16843)
* nginx: Excessive CPU usage via flaw in HTTP/2 implementation (CVE-2018-16844)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank the Nginx project for reporting these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rh-nginx112-nginx is now available for Red Hat Software Collections.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.\n\nSecurity Fix(es):\n\n* nginx: Denial of service and memory disclosure via mp4 module (CVE-2018-16845)\n\n* nginx: Excessive memory consumption via flaw in HTTP/2 implementation (CVE-2018-16843)\n\n* nginx: Excessive CPU usage via flaw in HTTP/2 implementation (CVE-2018-16844)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nRed Hat would like to thank the Nginx project for reporting these issues.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:3680",
"url": "https://access.redhat.com/errata/RHSA-2018:3680"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1644508",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644508"
},
{
"category": "external",
"summary": "1644510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644510"
},
{
"category": "external",
"summary": "1644511",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644511"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_3680.json"
}
],
"title": "Red Hat Security Advisory: rh-nginx112-nginx security update",
"tracking": {
"current_release_date": "2025-11-21T18:07:03+00:00",
"generator": {
"date": "2025-11-21T18:07:03+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2018:3680",
"initial_release_date": "2018-11-27T09:04:25+00:00",
"revision_history": [
{
"date": "2018-11-27T09:04:25+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-11-27T09:04:25+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:07:03+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Software Collections"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"product": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"product_id": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-http-xslt-filter@1.12.1-2.el7.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"product": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"product_id": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-stream@1.12.1-2.el7.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"product": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"product_id": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-http-image-filter@1.12.1-2.el7.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"product": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"product_id": "rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx@1.12.1-2.el7.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"product": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"product_id": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-mail@1.12.1-2.el7.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"product": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"product_id": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-debuginfo@1.12.1-2.el7.1?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"product": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"product_id": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-http-xslt-filter@1.12.1-2.el7.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"product": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"product_id": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-stream@1.12.1-2.el7.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"product": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"product_id": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-http-image-filter@1.12.1-2.el7.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"product": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"product_id": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx@1.12.1-2.el7.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"product": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"product_id": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-mail@1.12.1-2.el7.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"product": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"product_id": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-debuginfo@1.12.1-2.el7.1?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"product": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"product_id": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-http-xslt-filter@1.12.1-2.el7.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"product": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"product_id": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-stream@1.12.1-2.el7.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"product": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"product_id": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-http-image-filter@1.12.1-2.el7.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"product": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"product_id": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx@1.12.1-2.el7.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"product": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"product_id": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-mail@1.12.1-2.el7.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"product": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"product_id": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-debuginfo@1.12.1-2.el7.1?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"product": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"product_id": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx@1.12.1-2.el7.1?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"product": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"product_id": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-http-xslt-filter@1.12.1-2.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"product": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"product_id": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-stream@1.12.1-2.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"product": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"product_id": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-http-image-filter@1.12.1-2.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"product": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"product_id": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx@1.12.1-2.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"product": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"product_id": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-mail@1.12.1-2.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"product": {
"name": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"product_id": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-mod-http-perl@1.12.1-2.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"product": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"product_id": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx112-nginx-debuginfo@1.12.1-2.el7.1?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
},
"product_reference": "rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Nginx project"
]
}
],
"cve": "CVE-2018-16843",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2018-10-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1644511"
}
],
"notes": [
{
"category": "description",
"text": "nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive memory consumption. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the \u0027http2\u0027 option of the \u0027listen\u0027 directive is used in a configuration file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nginx: Excessive memory consumption via flaw in HTTP/2 implementation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of rh-nginx18-nginx as shipped with Red Hat Software Collections as they did not include the vulnerable module ngx_http_v2_module.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-16843"
},
{
"category": "external",
"summary": "RHBZ#1644511",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644511"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-16843",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16843"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-16843",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16843"
},
{
"category": "external",
"summary": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html"
}
],
"release_date": "2018-11-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-11-27T09:04:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe rh-nginx112-nginx service must be restarted for this update to take effect.",
"product_ids": [
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:3680"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nginx: Excessive memory consumption via flaw in HTTP/2 implementation"
},
{
"acknowledgments": [
{
"names": [
"the Nginx project"
]
}
],
"cve": "CVE-2018-16844",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2018-10-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1644510"
}
],
"notes": [
{
"category": "description",
"text": "nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive CPU usage. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the \u0027http2\u0027 option of the \u0027listen\u0027 directive is used in a configuration file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nginx: Excessive CPU usage via flaw in HTTP/2 implementation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of rh-nginx18-nginx as shipped with Red Hat Software Collections as they did not include the vulnerable module ngx_http_v2_module.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-16844"
},
{
"category": "external",
"summary": "RHBZ#1644510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644510"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-16844",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16844"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-16844",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16844"
},
{
"category": "external",
"summary": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html"
}
],
"release_date": "2018-11-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-11-27T09:04:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe rh-nginx112-nginx service must be restarted for this update to take effect.",
"product_ids": [
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:3680"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nginx: Excessive CPU usage via flaw in HTTP/2 implementation"
},
{
"acknowledgments": [
{
"names": [
"the Nginx project"
]
}
],
"cve": "CVE-2018-16845",
"cwe": {
"id": "CWE-201",
"name": "Insertion of Sensitive Information Into Sent Data"
},
"discovery_date": "2018-10-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1644508"
}
],
"notes": [
{
"category": "description",
"text": "An instance of missing input sanitization was found in the mp4 module for nginx. A local attacker could create a specially crafted video file that, when streamed by the server, would cause a denial of service (server crash or hang) and, possibly, information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nginx: Denial of service and memory disclosure via mp4 module",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-16845"
},
{
"category": "external",
"summary": "RHBZ#1644508",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644508"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-16845",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16845"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-16845",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16845"
},
{
"category": "external",
"summary": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html"
}
],
"release_date": "2018-11-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-11-27T09:04:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe rh-nginx112-nginx service must be restarted for this update to take effect.",
"product_ids": [
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:3680"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Server-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-debuginfo-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-image-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-perl-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-http-xslt-filter-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-mail-1:1.12.1-2.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.s390x",
"7Workstation-RHSCL-3.2:rh-nginx112-nginx-mod-stream-1:1.12.1-2.el7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "nginx: Denial of service and memory disclosure via mp4 module"
}
]
}
RHSA-2018_3652
Vulnerability from csaf_redhat - Published: 2018-11-26 12:08 - Updated: 2024-11-15 00:37Summary
Red Hat Security Advisory: rh-nginx18-nginx security update
Notes
Topic
An update for rh-nginx18-nginx is now available for Red Hat Software Collections.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.
Security Fix(es):
* nginx: Denial of service and memory disclosure via mp4 module (CVE-2018-16845)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank the Nginx project for reporting this issue.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rh-nginx18-nginx is now available for Red Hat Software Collections.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.\n\nSecurity Fix(es):\n\n* nginx: Denial of service and memory disclosure via mp4 module (CVE-2018-16845)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nRed Hat would like to thank the Nginx project for reporting this issue.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:3652",
"url": "https://access.redhat.com/errata/RHSA-2018:3652"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1644508",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644508"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_3652.json"
}
],
"title": "Red Hat Security Advisory: rh-nginx18-nginx security update",
"tracking": {
"current_release_date": "2024-11-15T00:37:49+00:00",
"generator": {
"date": "2024-11-15T00:37:49+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2018:3652",
"initial_release_date": "2018-11-26T12:08:06+00:00",
"revision_history": [
{
"date": "2018-11-26T12:08:06+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-11-26T12:08:06+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-15T00:37:49+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Software Collections"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"product": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"product_id": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx18-nginx@1.8.1-1.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"product": {
"name": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"product_id": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx18-nginx-debuginfo@1.8.1-1.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64",
"product": {
"name": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64",
"product_id": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx18-nginx-debuginfo@1.8.1-1.el6.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64",
"product": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64",
"product_id": "rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx18-nginx@1.8.1-1.el6.1?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"product": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"product_id": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx18-nginx@1.8.1-1.el7.1?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx18-nginx-1:1.8.1-1.el6.1.src",
"product": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el6.1.src",
"product_id": "rh-nginx18-nginx-1:1.8.1-1.el6.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx18-nginx@1.8.1-1.el6.1?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el6.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.src"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el6.1.src",
"relates_to_product_reference": "6Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64",
"relates_to_product_reference": "6Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el6.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.src"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el6.1.src",
"relates_to_product_reference": "6Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64",
"relates_to_product_reference": "6Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.src"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.src"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.src"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.src"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.src"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Nginx project"
]
}
],
"cve": "CVE-2018-16845",
"cwe": {
"id": "CWE-201",
"name": "Insertion of Sensitive Information Into Sent Data"
},
"discovery_date": "2018-10-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1644508"
}
],
"notes": [
{
"category": "description",
"text": "An instance of missing input sanitization was found in the mp4 module for nginx. A local attacker could create a specially crafted video file that, when streamed by the server, would cause a denial of service (server crash or hang) and, possibly, information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nginx: Denial of service and memory disclosure via mp4 module",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.src",
"6Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.src",
"6Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-16845"
},
{
"category": "external",
"summary": "RHBZ#1644508",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644508"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-16845",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16845"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-16845",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16845"
},
{
"category": "external",
"summary": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html"
}
],
"release_date": "2018-11-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-11-26T12:08:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe rh-nginx18-nginx service must be restarted for this update to take effect.",
"product_ids": [
"6Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.src",
"6Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.src",
"6Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:3652"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.0"
},
"products": [
"6Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.src",
"6Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64",
"6Server-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.src",
"6Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el6.1.x86_64",
"6Workstation-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el6.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Server-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Server-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.src",
"7Workstation-RHSCL-3.2:rh-nginx18-nginx-1:1.8.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx18-nginx-debuginfo-1:1.8.1-1.el7.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "nginx: Denial of service and memory disclosure via mp4 module"
}
]
}
RHSA-2018_3681
Vulnerability from csaf_redhat - Published: 2018-11-27 09:18 - Updated: 2024-11-15 00:37Summary
Red Hat Security Advisory: rh-nginx114-nginx security update
Notes
Topic
An update for rh-nginx114-nginx is now available for Red Hat Software Collections.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.
The following packages have been upgraded to a later upstream version: rh-nginx114-nginx (1.14.1). (BZ#1648365)
Security Fix(es):
* nginx: Denial of service and memory disclosure via mp4 module (CVE-2018-16845)
* nginx: Excessive memory consumption via flaw in HTTP/2 implementation (CVE-2018-16843)
* nginx: Excessive CPU usage via flaw in HTTP/2 implementation (CVE-2018-16844)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat would like to thank the Nginx project for reporting these issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rh-nginx114-nginx is now available for Red Hat Software Collections.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.\n\nThe following packages have been upgraded to a later upstream version: rh-nginx114-nginx (1.14.1). (BZ#1648365)\n\nSecurity Fix(es):\n\n* nginx: Denial of service and memory disclosure via mp4 module (CVE-2018-16845)\n\n* nginx: Excessive memory consumption via flaw in HTTP/2 implementation (CVE-2018-16843)\n\n* nginx: Excessive CPU usage via flaw in HTTP/2 implementation (CVE-2018-16844)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nRed Hat would like to thank the Nginx project for reporting these issues.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:3681",
"url": "https://access.redhat.com/errata/RHSA-2018:3681"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1644508",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644508"
},
{
"category": "external",
"summary": "1644510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644510"
},
{
"category": "external",
"summary": "1644511",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644511"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_3681.json"
}
],
"title": "Red Hat Security Advisory: rh-nginx114-nginx security update",
"tracking": {
"current_release_date": "2024-11-15T00:37:47+00:00",
"generator": {
"date": "2024-11-15T00:37:47+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2018:3681",
"initial_release_date": "2018-11-27T09:18:49+00:00",
"revision_history": [
{
"date": "2018-11-27T09:18:49+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-11-27T09:18:49+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-15T00:37:47+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product": {
"name": "Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Software Collections"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"product": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"product_id": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-stream@1.14.1-1.el7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"product": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"product_id": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-http-xslt-filter@1.14.1-1.el7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"product": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"product_id": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-debuginfo@1.14.1-1.el7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"product": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"product_id": "rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx@1.14.1-1.el7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"product": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"product_id": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-http-perl@1.14.1-1.el7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"product": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"product_id": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-http-image-filter@1.14.1-1.el7?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"product": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"product_id": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-mail@1.14.1-1.el7?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"product": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"product_id": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-stream@1.14.1-1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"product": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"product_id": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-http-xslt-filter@1.14.1-1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"product": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"product_id": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-debuginfo@1.14.1-1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"product": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"product_id": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx@1.14.1-1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"product": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"product_id": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-http-perl@1.14.1-1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"product": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"product_id": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-http-image-filter@1.14.1-1.el7?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"product": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"product_id": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-mail@1.14.1-1.el7?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"product": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"product_id": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-stream@1.14.1-1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"product": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"product_id": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-http-xslt-filter@1.14.1-1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"product": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"product_id": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-debuginfo@1.14.1-1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"product": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"product_id": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx@1.14.1-1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"product": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"product_id": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-http-perl@1.14.1-1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"product": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"product_id": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-http-image-filter@1.14.1-1.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"product": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"product_id": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-mail@1.14.1-1.el7?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.src",
"product": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.src",
"product_id": "rh-nginx114-nginx-1:1.14.1-1.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx@1.14.1-1.el7?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"product": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"product_id": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-stream@1.14.1-1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"product": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"product_id": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-http-xslt-filter@1.14.1-1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"product": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"product_id": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-debuginfo@1.14.1-1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"product": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"product_id": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx@1.14.1-1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"product": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"product_id": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-http-perl@1.14.1-1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"product": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"product_id": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-http-image-filter@1.14.1-1.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"product": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"product_id": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx114-nginx-mod-mail@1.14.1-1.el7?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.src",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4)",
"product_id": "7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.4.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5)",
"product_id": "7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.5.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6)",
"product_id": "7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2-7.6.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.src",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.src as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.src",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64 as a component of Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
},
"product_reference": "rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.2"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Nginx project"
]
}
],
"cve": "CVE-2018-16843",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2018-10-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1644511"
}
],
"notes": [
{
"category": "description",
"text": "nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive memory consumption. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the \u0027http2\u0027 option of the \u0027listen\u0027 directive is used in a configuration file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nginx: Excessive memory consumption via flaw in HTTP/2 implementation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of rh-nginx18-nginx as shipped with Red Hat Software Collections as they did not include the vulnerable module ngx_http_v2_module.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-16843"
},
{
"category": "external",
"summary": "RHBZ#1644511",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644511"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-16843",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16843"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-16843",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16843"
},
{
"category": "external",
"summary": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html"
}
],
"release_date": "2018-11-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-11-27T09:18:49+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe rh-nginx114-nginx service must be restarted for this update to take effect.",
"product_ids": [
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:3681"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nginx: Excessive memory consumption via flaw in HTTP/2 implementation"
},
{
"acknowledgments": [
{
"names": [
"the Nginx project"
]
}
],
"cve": "CVE-2018-16844",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2018-10-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1644510"
}
],
"notes": [
{
"category": "description",
"text": "nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive CPU usage. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the \u0027http2\u0027 option of the \u0027listen\u0027 directive is used in a configuration file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nginx: Excessive CPU usage via flaw in HTTP/2 implementation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of rh-nginx18-nginx as shipped with Red Hat Software Collections as they did not include the vulnerable module ngx_http_v2_module.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-16844"
},
{
"category": "external",
"summary": "RHBZ#1644510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644510"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-16844",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16844"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-16844",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16844"
},
{
"category": "external",
"summary": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000220.html"
}
],
"release_date": "2018-11-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-11-27T09:18:49+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe rh-nginx114-nginx service must be restarted for this update to take effect.",
"product_ids": [
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:3681"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nginx: Excessive CPU usage via flaw in HTTP/2 implementation"
},
{
"acknowledgments": [
{
"names": [
"the Nginx project"
]
}
],
"cve": "CVE-2018-16845",
"cwe": {
"id": "CWE-201",
"name": "Insertion of Sensitive Information Into Sent Data"
},
"discovery_date": "2018-10-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1644508"
}
],
"notes": [
{
"category": "description",
"text": "An instance of missing input sanitization was found in the mp4 module for nginx. A local attacker could create a specially crafted video file that, when streamed by the server, would cause a denial of service (server crash or hang) and, possibly, information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nginx: Denial of service and memory disclosure via mp4 module",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-16845"
},
{
"category": "external",
"summary": "RHBZ#1644508",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644508"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-16845",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-16845"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-16845",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16845"
},
{
"category": "external",
"summary": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html"
}
],
"release_date": "2018-11-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-11-27T09:18:49+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe rh-nginx114-nginx service must be restarted for this update to take effect.",
"product_ids": [
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:3681"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-Alt-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.4.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.5.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2-7.6.Z:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Server-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Server-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.src",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-debuginfo-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-image-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-perl-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-http-xslt-filter-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-mail-1:1.14.1-1.el7.x86_64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.aarch64",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.ppc64le",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.s390x",
"7Workstation-RHSCL-3.2:rh-nginx114-nginx-mod-stream-1:1.14.1-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "nginx: Denial of service and memory disclosure via mp4 module"
}
]
}
GSD-2018-16845
Vulnerability from gsd - Updated: 2023-12-13 01:22Details
nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2018-16845",
"description": "nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module.",
"id": "GSD-2018-16845",
"references": [
"https://www.suse.com/security/cve/CVE-2018-16845.html",
"https://www.debian.org/security/2018/dsa-4335",
"https://access.redhat.com/errata/RHSA-2018:3681",
"https://access.redhat.com/errata/RHSA-2018:3680",
"https://access.redhat.com/errata/RHSA-2018:3653",
"https://access.redhat.com/errata/RHSA-2018:3652",
"https://ubuntu.com/security/CVE-2018-16845",
"https://advisories.mageia.org/CVE-2018-16845.html",
"https://linux.oracle.com/cve/CVE-2018-16845.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2018-16845"
],
"details": "nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module.",
"id": "GSD-2018-16845",
"modified": "2023-12-13T01:22:26.415303Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2018-16845",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "nginx",
"version": {
"version_data": [
{
"version_value": "1.15.6"
},
{
"version_value": "1.14.1"
}
]
}
}
]
},
"vendor_name": "[UNKNOWN]"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module."
}
]
},
"impact": {
"cvss": [
[
{
"vectorString": "8.2/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.0"
}
]
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-400"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "DSA-4335",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2018/dsa-4335"
},
{
"name": "RHSA-2018:3680",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:3680"
},
{
"name": "RHSA-2018:3681",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:3681"
},
{
"name": "105868",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/105868"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16845",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16845"
},
{
"name": "1042039",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1042039"
},
{
"name": "[debian-lts-announce] 20181108 [SECURITY] [DLA 1572-1] nginx security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2018/11/msg00010.html"
},
{
"name": "RHSA-2018:3653",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:3653"
},
{
"name": "RHSA-2018:3652",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:3652"
},
{
"name": "USN-3812-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3812-1/"
},
{
"name": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html",
"refsource": "MISC",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html"
},
{
"name": "openSUSE-SU-2019:2120",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00035.html"
},
{
"name": "https://support.apple.com/kb/HT212818",
"refsource": "CONFIRM",
"url": "https://support.apple.com/kb/HT212818"
},
{
"name": "20210921 APPLE-SA-2021-09-20-4 Xcode 13",
"refsource": "FULLDISC",
"url": "http://seclists.org/fulldisclosure/2021/Sep/36"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "1.0.15",
"versionStartIncluding": "1.0.7",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "1.15.5",
"versionStartIncluding": "1.1.3",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:apple:xcode:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "13.0",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2018-16845"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-400"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16845",
"refsource": "CONFIRM",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16845"
},
{
"name": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html",
"refsource": "MISC",
"tags": [
"Mailing List",
"Patch",
"Vendor Advisory"
],
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html"
},
{
"name": "USN-3812-1",
"refsource": "UBUNTU",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3812-1/"
},
{
"name": "1042039",
"refsource": "SECTRACK",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securitytracker.com/id/1042039"
},
{
"name": "DSA-4335",
"refsource": "DEBIAN",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2018/dsa-4335"
},
{
"name": "[debian-lts-announce] 20181108 [SECURITY] [DLA 1572-1] nginx security update",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/11/msg00010.html"
},
{
"name": "105868",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/105868"
},
{
"name": "RHSA-2018:3653",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:3653"
},
{
"name": "RHSA-2018:3652",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:3652"
},
{
"name": "RHSA-2018:3681",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:3681"
},
{
"name": "RHSA-2018:3680",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:3680"
},
{
"name": "openSUSE-SU-2019:2120",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00035.html"
},
{
"name": "https://support.apple.com/kb/HT212818",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://support.apple.com/kb/HT212818"
},
{
"name": "20210921 APPLE-SA-2021-09-20-4 Xcode 13",
"refsource": "FULLDISC",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://seclists.org/fulldisclosure/2021/Sep/36"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 4.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": true
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 4.2
}
},
"lastModifiedDate": "2022-02-22T19:27Z",
"publishedDate": "2018-11-07T14:29Z"
}
}
}
OPENSUSE-SU-2019:2120-1
Vulnerability from csaf_opensuse - Published: 2019-09-10 18:18 - Updated: 2019-09-10 18:18Summary
Security update for nginx
Notes
Title of the patch
Security update for nginx
Description of the patch
This update for nginx fixes the following issues:
Security issues fixed:
- CVE-2019-9511: Fixed a denial of service by manipulating the window size and stream prioritization (bsc#1145579).
- CVE-2019-9513: Fixed a denial of service caused by resource loops (bsc#1145580).
- CVE-2019-9516: Fixed a denial of service caused by header leaks (bsc#1145582).
- CVE-2018-16845: Fixed denial of service and memory disclosure via mp4 module (bsc#1115015).
- CVE-2018-16843: Fixed excessive memory consumption in HTTP/2 implementation (bsc#1115022).
- CVE-2018-16844: Fixed excessive CPU usage via flaw in HTTP/2 implementation (bsc#1115025).
This update was imported from the SUSE:SLE-15-SP1:Update update project.
Patchnames
openSUSE-2019-2120
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for nginx",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for nginx fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2019-9511: Fixed a denial of service by manipulating the window size and stream prioritization (bsc#1145579).\n- CVE-2019-9513: Fixed a denial of service caused by resource loops (bsc#1145580).\n- CVE-2019-9516: Fixed a denial of service caused by header leaks (bsc#1145582).\n- CVE-2018-16845: Fixed denial of service and memory disclosure via mp4 module (bsc#1115015).\n- CVE-2018-16843: Fixed excessive memory consumption in HTTP/2 implementation (bsc#1115022).\n- CVE-2018-16844: Fixed excessive CPU usage via flaw in HTTP/2 implementation (bsc#1115025).\n\nThis update was imported from the SUSE:SLE-15-SP1:Update update project.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2019-2120",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2019_2120-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2019:2120-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/BWXBLC3WM4NT33YQW6VEXFVCPFVQE7FB/#BWXBLC3WM4NT33YQW6VEXFVCPFVQE7FB"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2019:2120-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/BWXBLC3WM4NT33YQW6VEXFVCPFVQE7FB/#BWXBLC3WM4NT33YQW6VEXFVCPFVQE7FB"
},
{
"category": "self",
"summary": "SUSE Bug 1115015",
"url": "https://bugzilla.suse.com/1115015"
},
{
"category": "self",
"summary": "SUSE Bug 1115022",
"url": "https://bugzilla.suse.com/1115022"
},
{
"category": "self",
"summary": "SUSE Bug 1115025",
"url": "https://bugzilla.suse.com/1115025"
},
{
"category": "self",
"summary": "SUSE Bug 1145579",
"url": "https://bugzilla.suse.com/1145579"
},
{
"category": "self",
"summary": "SUSE Bug 1145580",
"url": "https://bugzilla.suse.com/1145580"
},
{
"category": "self",
"summary": "SUSE Bug 1145582",
"url": "https://bugzilla.suse.com/1145582"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16843 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16843/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16844 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16844/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16845 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9511 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9511/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9513 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9513/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9516 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9516/"
}
],
"title": "Security update for nginx",
"tracking": {
"current_release_date": "2019-09-10T18:18:07Z",
"generator": {
"date": "2019-09-10T18:18:07Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2019:2120-1",
"initial_release_date": "2019-09-10T18:18:07Z",
"revision_history": [
{
"date": "2019-09-10T18:18:07Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "nginx-source-1.14.2-lp151.4.3.1.noarch",
"product": {
"name": "nginx-source-1.14.2-lp151.4.3.1.noarch",
"product_id": "nginx-source-1.14.2-lp151.4.3.1.noarch"
}
},
{
"category": "product_version",
"name": "vim-plugin-nginx-1.14.2-lp151.4.3.1.noarch",
"product": {
"name": "vim-plugin-nginx-1.14.2-lp151.4.3.1.noarch",
"product_id": "vim-plugin-nginx-1.14.2-lp151.4.3.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1.14.2-lp151.4.3.1.x86_64",
"product": {
"name": "nginx-1.14.2-lp151.4.3.1.x86_64",
"product_id": "nginx-1.14.2-lp151.4.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.1",
"product": {
"name": "openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1.14.2-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:nginx-1.14.2-lp151.4.3.1.x86_64"
},
"product_reference": "nginx-1.14.2-lp151.4.3.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-source-1.14.2-lp151.4.3.1.noarch as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:nginx-source-1.14.2-lp151.4.3.1.noarch"
},
"product_reference": "nginx-source-1.14.2-lp151.4.3.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-plugin-nginx-1.14.2-lp151.4.3.1.noarch as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:vim-plugin-nginx-1.14.2-lp151.4.3.1.noarch"
},
"product_reference": "vim-plugin-nginx-1.14.2-lp151.4.3.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-16843",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16843"
}
],
"notes": [
{
"category": "general",
"text": "nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive memory consumption. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the \u0027http2\u0027 option of the \u0027listen\u0027 directive is used in a configuration file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:nginx-1.14.2-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:nginx-source-1.14.2-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:vim-plugin-nginx-1.14.2-lp151.4.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16843",
"url": "https://www.suse.com/security/cve/CVE-2018-16843"
},
{
"category": "external",
"summary": "SUSE Bug 1115022 for CVE-2018-16843",
"url": "https://bugzilla.suse.com/1115022"
},
{
"category": "external",
"summary": "SUSE Bug 1115025 for CVE-2018-16843",
"url": "https://bugzilla.suse.com/1115025"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:nginx-1.14.2-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:nginx-source-1.14.2-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:vim-plugin-nginx-1.14.2-lp151.4.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:nginx-1.14.2-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:nginx-source-1.14.2-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:vim-plugin-nginx-1.14.2-lp151.4.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-10T18:18:07Z",
"details": "moderate"
}
],
"title": "CVE-2018-16843"
},
{
"cve": "CVE-2018-16844",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16844"
}
],
"notes": [
{
"category": "general",
"text": "nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive CPU usage. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the \u0027http2\u0027 option of the \u0027listen\u0027 directive is used in a configuration file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:nginx-1.14.2-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:nginx-source-1.14.2-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:vim-plugin-nginx-1.14.2-lp151.4.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16844",
"url": "https://www.suse.com/security/cve/CVE-2018-16844"
},
{
"category": "external",
"summary": "SUSE Bug 1115022 for CVE-2018-16844",
"url": "https://bugzilla.suse.com/1115022"
},
{
"category": "external",
"summary": "SUSE Bug 1115025 for CVE-2018-16844",
"url": "https://bugzilla.suse.com/1115025"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:nginx-1.14.2-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:nginx-source-1.14.2-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:vim-plugin-nginx-1.14.2-lp151.4.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:nginx-1.14.2-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:nginx-source-1.14.2-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:vim-plugin-nginx-1.14.2-lp151.4.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-10T18:18:07Z",
"details": "moderate"
}
],
"title": "CVE-2018-16844"
},
{
"cve": "CVE-2018-16845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16845"
}
],
"notes": [
{
"category": "general",
"text": "nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:nginx-1.14.2-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:nginx-source-1.14.2-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:vim-plugin-nginx-1.14.2-lp151.4.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16845",
"url": "https://www.suse.com/security/cve/CVE-2018-16845"
},
{
"category": "external",
"summary": "SUSE Bug 1115015 for CVE-2018-16845",
"url": "https://bugzilla.suse.com/1115015"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:nginx-1.14.2-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:nginx-source-1.14.2-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:vim-plugin-nginx-1.14.2-lp151.4.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:nginx-1.14.2-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:nginx-source-1.14.2-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:vim-plugin-nginx-1.14.2-lp151.4.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-10T18:18:07Z",
"details": "important"
}
],
"title": "CVE-2018-16845"
},
{
"cve": "CVE-2019-9511",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-9511"
}
],
"notes": [
{
"category": "general",
"text": "Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service. The attacker requests a large amount of data from a specified resource over multiple streams. They manipulate window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:nginx-1.14.2-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:nginx-source-1.14.2-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:vim-plugin-nginx-1.14.2-lp151.4.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-9511",
"url": "https://www.suse.com/security/cve/CVE-2019-9511"
},
{
"category": "external",
"summary": "SUSE Bug 1145579 for CVE-2019-9511",
"url": "https://bugzilla.suse.com/1145579"
},
{
"category": "external",
"summary": "SUSE Bug 1146091 for CVE-2019-9511",
"url": "https://bugzilla.suse.com/1146091"
},
{
"category": "external",
"summary": "SUSE Bug 1146182 for CVE-2019-9511",
"url": "https://bugzilla.suse.com/1146182"
},
{
"category": "external",
"summary": "SUSE Bug 1193427 for CVE-2019-9511",
"url": "https://bugzilla.suse.com/1193427"
},
{
"category": "external",
"summary": "SUSE Bug 1202787 for CVE-2019-9511",
"url": "https://bugzilla.suse.com/1202787"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:nginx-1.14.2-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:nginx-source-1.14.2-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:vim-plugin-nginx-1.14.2-lp151.4.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:nginx-1.14.2-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:nginx-source-1.14.2-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:vim-plugin-nginx-1.14.2-lp151.4.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-10T18:18:07Z",
"details": "important"
}
],
"title": "CVE-2019-9511"
},
{
"cve": "CVE-2019-9513",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-9513"
}
],
"notes": [
{
"category": "general",
"text": "Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service. The attacker creates multiple request streams and continually shuffles the priority of the streams in a way that causes substantial churn to the priority tree. This can consume excess CPU.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:nginx-1.14.2-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:nginx-source-1.14.2-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:vim-plugin-nginx-1.14.2-lp151.4.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-9513",
"url": "https://www.suse.com/security/cve/CVE-2019-9513"
},
{
"category": "external",
"summary": "SUSE Bug 1145580 for CVE-2019-9513",
"url": "https://bugzilla.suse.com/1145580"
},
{
"category": "external",
"summary": "SUSE Bug 1146094 for CVE-2019-9513",
"url": "https://bugzilla.suse.com/1146094"
},
{
"category": "external",
"summary": "SUSE Bug 1146184 for CVE-2019-9513",
"url": "https://bugzilla.suse.com/1146184"
},
{
"category": "external",
"summary": "SUSE Bug 1193427 for CVE-2019-9513",
"url": "https://bugzilla.suse.com/1193427"
},
{
"category": "external",
"summary": "SUSE Bug 1202787 for CVE-2019-9513",
"url": "https://bugzilla.suse.com/1202787"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:nginx-1.14.2-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:nginx-source-1.14.2-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:vim-plugin-nginx-1.14.2-lp151.4.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:nginx-1.14.2-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:nginx-source-1.14.2-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:vim-plugin-nginx-1.14.2-lp151.4.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-10T18:18:07Z",
"details": "important"
}
],
"title": "CVE-2019-9513"
},
{
"cve": "CVE-2019-9516",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-9516"
}
],
"notes": [
{
"category": "general",
"text": "Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service. The attacker sends a stream of headers with a 0-length header name and 0-length header value, optionally Huffman encoded into 1-byte or greater headers. Some implementations allocate memory for these headers and keep the allocation alive until the session dies. This can consume excess memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:nginx-1.14.2-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:nginx-source-1.14.2-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:vim-plugin-nginx-1.14.2-lp151.4.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-9516",
"url": "https://www.suse.com/security/cve/CVE-2019-9516"
},
{
"category": "external",
"summary": "SUSE Bug 1145582 for CVE-2019-9516",
"url": "https://bugzilla.suse.com/1145582"
},
{
"category": "external",
"summary": "SUSE Bug 1146090 for CVE-2019-9516",
"url": "https://bugzilla.suse.com/1146090"
},
{
"category": "external",
"summary": "SUSE Bug 1193427 for CVE-2019-9516",
"url": "https://bugzilla.suse.com/1193427"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:nginx-1.14.2-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:nginx-source-1.14.2-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:vim-plugin-nginx-1.14.2-lp151.4.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Leap 15.1:nginx-1.14.2-lp151.4.3.1.x86_64",
"openSUSE Leap 15.1:nginx-source-1.14.2-lp151.4.3.1.noarch",
"openSUSE Leap 15.1:vim-plugin-nginx-1.14.2-lp151.4.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-10T18:18:07Z",
"details": "important"
}
],
"title": "CVE-2019-9516"
}
]
}
OPENSUSE-SU-2019:0195-1
Vulnerability from csaf_opensuse - Published: 2019-03-23 10:59 - Updated: 2019-03-23 10:59Summary
Security update for nginx
Notes
Title of the patch
Security update for nginx
Description of the patch
This update for nginx fixes the following issues:
nginx was updated to 1.14.2:
- Bugfix: nginx could not be built on Fedora 28 Linux.
- Bugfix: in handling of client addresses when using unix domain
listen sockets to work with datagrams on Linux.
- Change: the logging level of the 'http request', 'https proxy
request', 'unsupported protocol', 'version too low',
'no suitable key share', and 'no suitable signature algorithm'
SSL errors has been lowered from 'crit' to 'info'.
- Bugfix: when using OpenSSL 1.1.0 or newer it was not possible
to switch off 'ssl_prefer_server_ciphers' in a virtual server
if it was switched on in the default server.
- Bugfix: nginx could not be built with LibreSSL 2.8.0.
- Bugfix: if nginx was built with OpenSSL 1.1.0 and used with
OpenSSL 1.1.1, the TLS 1.3 protocol was always enabled.
- Bugfix: sending a disk-buffered request body to a gRPC backend
might fail.
- Bugfix: connections with some gRPC backends might not be cached when
using the 'keepalive' directive.
- Bugfix: a segmentation fault might occur in a worker process if the
ngx_http_mp4_module was used on 32-bit platforms.
Changes with nginx 1.14.1:
- Security: when using HTTP/2 a client might cause excessive memory
consumption (CVE-2018-16843) and CPU usage (CVE-2018-16844).
- Security: processing of a specially crafted mp4 file with the
ngx_http_mp4_module might result in worker process memory disclosure
(CVE-2018-16845).
- Bugfix: working with gRPC backends might result in excessive memory
consumption.
Changes with nginx 1.13.12:
- Bugfix: connections with gRPC backends might be closed unexpectedly
when returning a large response.
Changes with nginx 1.13.10
- Feature: the 'set' parameter of the 'include' SSI
directive now allows writing arbitrary responses to a
variable; the 'subrequest_output_buffer_size' directive
defines maximum response size.
- Feature: now nginx uses clock_gettime(CLOCK_MONOTONIC) if available,
to avoid timeouts being incorrectly triggered on system time changes.
- Feature: the 'escape=none' parameter of the 'log_format' directive.
Thanks to Johannes Baiter and Calin Don.
- Feature: the $ssl_preread_alpn_protocols variable in the
ngx_stream_ssl_preread_module.
- Feature: the ngx_http_grpc_module.
- Bugfix: in memory allocation error handling in the 'geo' directive.
- Bugfix: when using variables in the 'auth_basic_user_file' directive
a null character might appear in logs.
Thanks to Vadim Filimonov.
Patchnames
openSUSE-2019-195
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for nginx",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for nginx fixes the following issues:\n\nnginx was updated to 1.14.2:\n\n- Bugfix: nginx could not be built on Fedora 28 Linux.\n- Bugfix: in handling of client addresses when using unix domain\n listen sockets to work with datagrams on Linux.\n- Change: the logging level of the \u0027http request\u0027, \u0027https proxy\n request\u0027, \u0027unsupported protocol\u0027, \u0027version too low\u0027,\n \u0027no suitable key share\u0027, and \u0027no suitable signature algorithm\u0027\n SSL errors has been lowered from \u0027crit\u0027 to \u0027info\u0027.\n- Bugfix: when using OpenSSL 1.1.0 or newer it was not possible\n to switch off \u0027ssl_prefer_server_ciphers\u0027 in a virtual server\n if it was switched on in the default server.\n- Bugfix: nginx could not be built with LibreSSL 2.8.0.\n- Bugfix: if nginx was built with OpenSSL 1.1.0 and used with\n OpenSSL 1.1.1, the TLS 1.3 protocol was always enabled.\n- Bugfix: sending a disk-buffered request body to a gRPC backend\n might fail.\n- Bugfix: connections with some gRPC backends might not be cached when\n using the \u0027keepalive\u0027 directive.\n- Bugfix: a segmentation fault might occur in a worker process if the\n ngx_http_mp4_module was used on 32-bit platforms.\n\nChanges with nginx 1.14.1:\n\n- Security: when using HTTP/2 a client might cause excessive memory\n consumption (CVE-2018-16843) and CPU usage (CVE-2018-16844).\n- Security: processing of a specially crafted mp4 file with the\n ngx_http_mp4_module might result in worker process memory disclosure\n (CVE-2018-16845).\n- Bugfix: working with gRPC backends might result in excessive memory\n consumption.\n\nChanges with nginx 1.13.12:\n\n- Bugfix: connections with gRPC backends might be closed unexpectedly\n when returning a large response.\n\nChanges with nginx 1.13.10\n\n- Feature: the \u0027set\u0027 parameter of the \u0027include\u0027 SSI \n directive now allows writing arbitrary responses to a\n variable; the \u0027subrequest_output_buffer_size\u0027 directive\n defines maximum response size.\n- Feature: now nginx uses clock_gettime(CLOCK_MONOTONIC) if available,\n to avoid timeouts being incorrectly triggered on system time changes.\n- Feature: the \u0027escape=none\u0027 parameter of the \u0027log_format\u0027 directive.\n Thanks to Johannes Baiter and Calin Don.\n- Feature: the $ssl_preread_alpn_protocols variable in the\n ngx_stream_ssl_preread_module.\n- Feature: the ngx_http_grpc_module.\n- Bugfix: in memory allocation error handling in the \u0027geo\u0027 directive.\n- Bugfix: when using variables in the \u0027auth_basic_user_file\u0027 directive\n a null character might appear in logs.\n Thanks to Vadim Filimonov.\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2019-195",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2019_0195-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2019:0195-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/BANOBXLWHZASXZTGTJCX7HNMKYECPLOA/#BANOBXLWHZASXZTGTJCX7HNMKYECPLOA"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2019:0195-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/BANOBXLWHZASXZTGTJCX7HNMKYECPLOA/#BANOBXLWHZASXZTGTJCX7HNMKYECPLOA"
},
{
"category": "self",
"summary": "SUSE Bug 1115015",
"url": "https://bugzilla.suse.com/1115015"
},
{
"category": "self",
"summary": "SUSE Bug 1115022",
"url": "https://bugzilla.suse.com/1115022"
},
{
"category": "self",
"summary": "SUSE Bug 1115025",
"url": "https://bugzilla.suse.com/1115025"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16843 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16843/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16844 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16844/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16845 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16845/"
}
],
"title": "Security update for nginx",
"tracking": {
"current_release_date": "2019-03-23T10:59:22Z",
"generator": {
"date": "2019-03-23T10:59:22Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2019:0195-1",
"initial_release_date": "2019-03-23T10:59:22Z",
"revision_history": [
{
"date": "2019-03-23T10:59:22Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "nginx-1.14.2-16.1.aarch64",
"product": {
"name": "nginx-1.14.2-16.1.aarch64",
"product_id": "nginx-1.14.2-16.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "vim-plugin-nginx-1.14.2-16.1.noarch",
"product": {
"name": "vim-plugin-nginx-1.14.2-16.1.noarch",
"product_id": "vim-plugin-nginx-1.14.2-16.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1.14.2-16.1.ppc64le",
"product": {
"name": "nginx-1.14.2-16.1.ppc64le",
"product_id": "nginx-1.14.2-16.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1.14.2-16.1.s390x",
"product": {
"name": "nginx-1.14.2-16.1.s390x",
"product_id": "nginx-1.14.2-16.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1.14.2-16.1.x86_64",
"product": {
"name": "nginx-1.14.2-16.1.x86_64",
"product_id": "nginx-1.14.2-16.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Package Hub 12",
"product": {
"name": "SUSE Package Hub 12",
"product_id": "SUSE Package Hub 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:packagehub:12"
}
}
},
{
"category": "product_name",
"name": "openSUSE Leap 15.0",
"product": {
"name": "openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1.14.2-16.1.aarch64 as component of SUSE Package Hub 12",
"product_id": "SUSE Package Hub 12:nginx-1.14.2-16.1.aarch64"
},
"product_reference": "nginx-1.14.2-16.1.aarch64",
"relates_to_product_reference": "SUSE Package Hub 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1.14.2-16.1.ppc64le as component of SUSE Package Hub 12",
"product_id": "SUSE Package Hub 12:nginx-1.14.2-16.1.ppc64le"
},
"product_reference": "nginx-1.14.2-16.1.ppc64le",
"relates_to_product_reference": "SUSE Package Hub 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1.14.2-16.1.s390x as component of SUSE Package Hub 12",
"product_id": "SUSE Package Hub 12:nginx-1.14.2-16.1.s390x"
},
"product_reference": "nginx-1.14.2-16.1.s390x",
"relates_to_product_reference": "SUSE Package Hub 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1.14.2-16.1.x86_64 as component of SUSE Package Hub 12",
"product_id": "SUSE Package Hub 12:nginx-1.14.2-16.1.x86_64"
},
"product_reference": "nginx-1.14.2-16.1.x86_64",
"relates_to_product_reference": "SUSE Package Hub 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-plugin-nginx-1.14.2-16.1.noarch as component of SUSE Package Hub 12",
"product_id": "SUSE Package Hub 12:vim-plugin-nginx-1.14.2-16.1.noarch"
},
"product_reference": "vim-plugin-nginx-1.14.2-16.1.noarch",
"relates_to_product_reference": "SUSE Package Hub 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1.14.2-16.1.aarch64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:nginx-1.14.2-16.1.aarch64"
},
"product_reference": "nginx-1.14.2-16.1.aarch64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1.14.2-16.1.ppc64le as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:nginx-1.14.2-16.1.ppc64le"
},
"product_reference": "nginx-1.14.2-16.1.ppc64le",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1.14.2-16.1.s390x as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:nginx-1.14.2-16.1.s390x"
},
"product_reference": "nginx-1.14.2-16.1.s390x",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1.14.2-16.1.x86_64 as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:nginx-1.14.2-16.1.x86_64"
},
"product_reference": "nginx-1.14.2-16.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-plugin-nginx-1.14.2-16.1.noarch as component of openSUSE Leap 15.0",
"product_id": "openSUSE Leap 15.0:vim-plugin-nginx-1.14.2-16.1.noarch"
},
"product_reference": "vim-plugin-nginx-1.14.2-16.1.noarch",
"relates_to_product_reference": "openSUSE Leap 15.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-16843",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16843"
}
],
"notes": [
{
"category": "general",
"text": "nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive memory consumption. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the \u0027http2\u0027 option of the \u0027listen\u0027 directive is used in a configuration file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:nginx-1.14.2-16.1.aarch64",
"SUSE Package Hub 12:nginx-1.14.2-16.1.ppc64le",
"SUSE Package Hub 12:nginx-1.14.2-16.1.s390x",
"SUSE Package Hub 12:nginx-1.14.2-16.1.x86_64",
"SUSE Package Hub 12:vim-plugin-nginx-1.14.2-16.1.noarch",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.aarch64",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.ppc64le",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.s390x",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.x86_64",
"openSUSE Leap 15.0:vim-plugin-nginx-1.14.2-16.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16843",
"url": "https://www.suse.com/security/cve/CVE-2018-16843"
},
{
"category": "external",
"summary": "SUSE Bug 1115022 for CVE-2018-16843",
"url": "https://bugzilla.suse.com/1115022"
},
{
"category": "external",
"summary": "SUSE Bug 1115025 for CVE-2018-16843",
"url": "https://bugzilla.suse.com/1115025"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:nginx-1.14.2-16.1.aarch64",
"SUSE Package Hub 12:nginx-1.14.2-16.1.ppc64le",
"SUSE Package Hub 12:nginx-1.14.2-16.1.s390x",
"SUSE Package Hub 12:nginx-1.14.2-16.1.x86_64",
"SUSE Package Hub 12:vim-plugin-nginx-1.14.2-16.1.noarch",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.aarch64",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.ppc64le",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.s390x",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.x86_64",
"openSUSE Leap 15.0:vim-plugin-nginx-1.14.2-16.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12:nginx-1.14.2-16.1.aarch64",
"SUSE Package Hub 12:nginx-1.14.2-16.1.ppc64le",
"SUSE Package Hub 12:nginx-1.14.2-16.1.s390x",
"SUSE Package Hub 12:nginx-1.14.2-16.1.x86_64",
"SUSE Package Hub 12:vim-plugin-nginx-1.14.2-16.1.noarch",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.aarch64",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.ppc64le",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.s390x",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.x86_64",
"openSUSE Leap 15.0:vim-plugin-nginx-1.14.2-16.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-03-23T10:59:22Z",
"details": "moderate"
}
],
"title": "CVE-2018-16843"
},
{
"cve": "CVE-2018-16844",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16844"
}
],
"notes": [
{
"category": "general",
"text": "nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive CPU usage. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the \u0027http2\u0027 option of the \u0027listen\u0027 directive is used in a configuration file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:nginx-1.14.2-16.1.aarch64",
"SUSE Package Hub 12:nginx-1.14.2-16.1.ppc64le",
"SUSE Package Hub 12:nginx-1.14.2-16.1.s390x",
"SUSE Package Hub 12:nginx-1.14.2-16.1.x86_64",
"SUSE Package Hub 12:vim-plugin-nginx-1.14.2-16.1.noarch",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.aarch64",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.ppc64le",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.s390x",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.x86_64",
"openSUSE Leap 15.0:vim-plugin-nginx-1.14.2-16.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16844",
"url": "https://www.suse.com/security/cve/CVE-2018-16844"
},
{
"category": "external",
"summary": "SUSE Bug 1115022 for CVE-2018-16844",
"url": "https://bugzilla.suse.com/1115022"
},
{
"category": "external",
"summary": "SUSE Bug 1115025 for CVE-2018-16844",
"url": "https://bugzilla.suse.com/1115025"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:nginx-1.14.2-16.1.aarch64",
"SUSE Package Hub 12:nginx-1.14.2-16.1.ppc64le",
"SUSE Package Hub 12:nginx-1.14.2-16.1.s390x",
"SUSE Package Hub 12:nginx-1.14.2-16.1.x86_64",
"SUSE Package Hub 12:vim-plugin-nginx-1.14.2-16.1.noarch",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.aarch64",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.ppc64le",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.s390x",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.x86_64",
"openSUSE Leap 15.0:vim-plugin-nginx-1.14.2-16.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12:nginx-1.14.2-16.1.aarch64",
"SUSE Package Hub 12:nginx-1.14.2-16.1.ppc64le",
"SUSE Package Hub 12:nginx-1.14.2-16.1.s390x",
"SUSE Package Hub 12:nginx-1.14.2-16.1.x86_64",
"SUSE Package Hub 12:vim-plugin-nginx-1.14.2-16.1.noarch",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.aarch64",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.ppc64le",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.s390x",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.x86_64",
"openSUSE Leap 15.0:vim-plugin-nginx-1.14.2-16.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-03-23T10:59:22Z",
"details": "moderate"
}
],
"title": "CVE-2018-16844"
},
{
"cve": "CVE-2018-16845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16845"
}
],
"notes": [
{
"category": "general",
"text": "nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Package Hub 12:nginx-1.14.2-16.1.aarch64",
"SUSE Package Hub 12:nginx-1.14.2-16.1.ppc64le",
"SUSE Package Hub 12:nginx-1.14.2-16.1.s390x",
"SUSE Package Hub 12:nginx-1.14.2-16.1.x86_64",
"SUSE Package Hub 12:vim-plugin-nginx-1.14.2-16.1.noarch",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.aarch64",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.ppc64le",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.s390x",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.x86_64",
"openSUSE Leap 15.0:vim-plugin-nginx-1.14.2-16.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16845",
"url": "https://www.suse.com/security/cve/CVE-2018-16845"
},
{
"category": "external",
"summary": "SUSE Bug 1115015 for CVE-2018-16845",
"url": "https://bugzilla.suse.com/1115015"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Package Hub 12:nginx-1.14.2-16.1.aarch64",
"SUSE Package Hub 12:nginx-1.14.2-16.1.ppc64le",
"SUSE Package Hub 12:nginx-1.14.2-16.1.s390x",
"SUSE Package Hub 12:nginx-1.14.2-16.1.x86_64",
"SUSE Package Hub 12:vim-plugin-nginx-1.14.2-16.1.noarch",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.aarch64",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.ppc64le",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.s390x",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.x86_64",
"openSUSE Leap 15.0:vim-plugin-nginx-1.14.2-16.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Package Hub 12:nginx-1.14.2-16.1.aarch64",
"SUSE Package Hub 12:nginx-1.14.2-16.1.ppc64le",
"SUSE Package Hub 12:nginx-1.14.2-16.1.s390x",
"SUSE Package Hub 12:nginx-1.14.2-16.1.x86_64",
"SUSE Package Hub 12:vim-plugin-nginx-1.14.2-16.1.noarch",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.aarch64",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.ppc64le",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.s390x",
"openSUSE Leap 15.0:nginx-1.14.2-16.1.x86_64",
"openSUSE Leap 15.0:vim-plugin-nginx-1.14.2-16.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-03-23T10:59:22Z",
"details": "important"
}
],
"title": "CVE-2018-16845"
}
]
}
OPENSUSE-SU-2024:11092-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
nginx-1.21.3-1.4 on GA media
Notes
Title of the patch
nginx-1.21.3-1.4 on GA media
Description of the patch
These are all security issues fixed in the nginx-1.21.3-1.4 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-11092
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "nginx-1.21.3-1.4 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the nginx-1.21.3-1.4 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-11092",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11092-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-7529 page",
"url": "https://www.suse.com/security/cve/CVE-2017-7529/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16843 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16843/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16845 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-20372 page",
"url": "https://www.suse.com/security/cve/CVE-2019-20372/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9511 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9511/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9516 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9516/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2021-23017 page",
"url": "https://www.suse.com/security/cve/CVE-2021-23017/"
}
],
"title": "nginx-1.21.3-1.4 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:11092-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "nginx-1.21.3-1.4.aarch64",
"product": {
"name": "nginx-1.21.3-1.4.aarch64",
"product_id": "nginx-1.21.3-1.4.aarch64"
}
},
{
"category": "product_version",
"name": "nginx-source-1.21.3-1.4.aarch64",
"product": {
"name": "nginx-source-1.21.3-1.4.aarch64",
"product_id": "nginx-source-1.21.3-1.4.aarch64"
}
},
{
"category": "product_version",
"name": "vim-plugin-nginx-1.21.3-1.4.aarch64",
"product": {
"name": "vim-plugin-nginx-1.21.3-1.4.aarch64",
"product_id": "vim-plugin-nginx-1.21.3-1.4.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1.21.3-1.4.ppc64le",
"product": {
"name": "nginx-1.21.3-1.4.ppc64le",
"product_id": "nginx-1.21.3-1.4.ppc64le"
}
},
{
"category": "product_version",
"name": "nginx-source-1.21.3-1.4.ppc64le",
"product": {
"name": "nginx-source-1.21.3-1.4.ppc64le",
"product_id": "nginx-source-1.21.3-1.4.ppc64le"
}
},
{
"category": "product_version",
"name": "vim-plugin-nginx-1.21.3-1.4.ppc64le",
"product": {
"name": "vim-plugin-nginx-1.21.3-1.4.ppc64le",
"product_id": "vim-plugin-nginx-1.21.3-1.4.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1.21.3-1.4.s390x",
"product": {
"name": "nginx-1.21.3-1.4.s390x",
"product_id": "nginx-1.21.3-1.4.s390x"
}
},
{
"category": "product_version",
"name": "nginx-source-1.21.3-1.4.s390x",
"product": {
"name": "nginx-source-1.21.3-1.4.s390x",
"product_id": "nginx-source-1.21.3-1.4.s390x"
}
},
{
"category": "product_version",
"name": "vim-plugin-nginx-1.21.3-1.4.s390x",
"product": {
"name": "vim-plugin-nginx-1.21.3-1.4.s390x",
"product_id": "vim-plugin-nginx-1.21.3-1.4.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1.21.3-1.4.x86_64",
"product": {
"name": "nginx-1.21.3-1.4.x86_64",
"product_id": "nginx-1.21.3-1.4.x86_64"
}
},
{
"category": "product_version",
"name": "nginx-source-1.21.3-1.4.x86_64",
"product": {
"name": "nginx-source-1.21.3-1.4.x86_64",
"product_id": "nginx-source-1.21.3-1.4.x86_64"
}
},
{
"category": "product_version",
"name": "vim-plugin-nginx-1.21.3-1.4.x86_64",
"product": {
"name": "vim-plugin-nginx-1.21.3-1.4.x86_64",
"product_id": "vim-plugin-nginx-1.21.3-1.4.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1.21.3-1.4.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:nginx-1.21.3-1.4.aarch64"
},
"product_reference": "nginx-1.21.3-1.4.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1.21.3-1.4.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:nginx-1.21.3-1.4.ppc64le"
},
"product_reference": "nginx-1.21.3-1.4.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1.21.3-1.4.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:nginx-1.21.3-1.4.s390x"
},
"product_reference": "nginx-1.21.3-1.4.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1.21.3-1.4.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:nginx-1.21.3-1.4.x86_64"
},
"product_reference": "nginx-1.21.3-1.4.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-source-1.21.3-1.4.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:nginx-source-1.21.3-1.4.aarch64"
},
"product_reference": "nginx-source-1.21.3-1.4.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-source-1.21.3-1.4.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:nginx-source-1.21.3-1.4.ppc64le"
},
"product_reference": "nginx-source-1.21.3-1.4.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-source-1.21.3-1.4.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:nginx-source-1.21.3-1.4.s390x"
},
"product_reference": "nginx-source-1.21.3-1.4.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-source-1.21.3-1.4.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:nginx-source-1.21.3-1.4.x86_64"
},
"product_reference": "nginx-source-1.21.3-1.4.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-plugin-nginx-1.21.3-1.4.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.aarch64"
},
"product_reference": "vim-plugin-nginx-1.21.3-1.4.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-plugin-nginx-1.21.3-1.4.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.ppc64le"
},
"product_reference": "vim-plugin-nginx-1.21.3-1.4.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-plugin-nginx-1.21.3-1.4.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.s390x"
},
"product_reference": "vim-plugin-nginx-1.21.3-1.4.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-plugin-nginx-1.21.3-1.4.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.x86_64"
},
"product_reference": "vim-plugin-nginx-1.21.3-1.4.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-7529",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-7529"
}
],
"notes": [
{
"category": "general",
"text": "Nginx versions since 0.5.6 up to and including 1.13.2 are vulnerable to integer overflow vulnerability in nginx range filter module resulting into leak of potentially sensitive information triggered by specially crafted request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-7529",
"url": "https://www.suse.com/security/cve/CVE-2017-7529"
},
{
"category": "external",
"summary": "SUSE Bug 1048265 for CVE-2017-7529",
"url": "https://bugzilla.suse.com/1048265"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-7529"
},
{
"cve": "CVE-2018-16843",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16843"
}
],
"notes": [
{
"category": "general",
"text": "nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive memory consumption. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the \u0027http2\u0027 option of the \u0027listen\u0027 directive is used in a configuration file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16843",
"url": "https://www.suse.com/security/cve/CVE-2018-16843"
},
{
"category": "external",
"summary": "SUSE Bug 1115022 for CVE-2018-16843",
"url": "https://bugzilla.suse.com/1115022"
},
{
"category": "external",
"summary": "SUSE Bug 1115025 for CVE-2018-16843",
"url": "https://bugzilla.suse.com/1115025"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-16843"
},
{
"cve": "CVE-2018-16845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16845"
}
],
"notes": [
{
"category": "general",
"text": "nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16845",
"url": "https://www.suse.com/security/cve/CVE-2018-16845"
},
{
"category": "external",
"summary": "SUSE Bug 1115015 for CVE-2018-16845",
"url": "https://bugzilla.suse.com/1115015"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-16845"
},
{
"cve": "CVE-2019-20372",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-20372"
}
],
"notes": [
{
"category": "general",
"text": "NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-20372",
"url": "https://www.suse.com/security/cve/CVE-2019-20372"
},
{
"category": "external",
"summary": "SUSE Bug 1160682 for CVE-2019-20372",
"url": "https://bugzilla.suse.com/1160682"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-20372"
},
{
"cve": "CVE-2019-9511",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-9511"
}
],
"notes": [
{
"category": "general",
"text": "Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service. The attacker requests a large amount of data from a specified resource over multiple streams. They manipulate window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-9511",
"url": "https://www.suse.com/security/cve/CVE-2019-9511"
},
{
"category": "external",
"summary": "SUSE Bug 1145579 for CVE-2019-9511",
"url": "https://bugzilla.suse.com/1145579"
},
{
"category": "external",
"summary": "SUSE Bug 1146091 for CVE-2019-9511",
"url": "https://bugzilla.suse.com/1146091"
},
{
"category": "external",
"summary": "SUSE Bug 1146182 for CVE-2019-9511",
"url": "https://bugzilla.suse.com/1146182"
},
{
"category": "external",
"summary": "SUSE Bug 1193427 for CVE-2019-9511",
"url": "https://bugzilla.suse.com/1193427"
},
{
"category": "external",
"summary": "SUSE Bug 1202787 for CVE-2019-9511",
"url": "https://bugzilla.suse.com/1202787"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-9511"
},
{
"cve": "CVE-2019-9516",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-9516"
}
],
"notes": [
{
"category": "general",
"text": "Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service. The attacker sends a stream of headers with a 0-length header name and 0-length header value, optionally Huffman encoded into 1-byte or greater headers. Some implementations allocate memory for these headers and keep the allocation alive until the session dies. This can consume excess memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-9516",
"url": "https://www.suse.com/security/cve/CVE-2019-9516"
},
{
"category": "external",
"summary": "SUSE Bug 1145582 for CVE-2019-9516",
"url": "https://bugzilla.suse.com/1145582"
},
{
"category": "external",
"summary": "SUSE Bug 1146090 for CVE-2019-9516",
"url": "https://bugzilla.suse.com/1146090"
},
{
"category": "external",
"summary": "SUSE Bug 1193427 for CVE-2019-9516",
"url": "https://bugzilla.suse.com/1193427"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-9516"
},
{
"cve": "CVE-2021-23017",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2021-23017"
}
],
"notes": [
{
"category": "general",
"text": "A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2021-23017",
"url": "https://www.suse.com/security/cve/CVE-2021-23017"
},
{
"category": "external",
"summary": "SUSE Bug 1186126 for CVE-2021-23017",
"url": "https://bugzilla.suse.com/1186126"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:nginx-source-1.21.3-1.4.x86_64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.aarch64",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.ppc64le",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.s390x",
"openSUSE Tumbleweed:vim-plugin-nginx-1.21.3-1.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2021-23017"
}
]
}
GHSA-VQ5F-VPGW-9VCP
Vulnerability from github – Published: 2022-05-13 01:03 – Updated: 2022-05-13 01:03
VLAI?
Details
nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module.
Severity ?
6.1 (Medium)
{
"affected": [],
"aliases": [
"CVE-2018-16845"
],
"database_specific": {
"cwe_ids": [
"CWE-400"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2018-11-07T14:29:00Z",
"severity": "MODERATE"
},
"details": "nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module.",
"id": "GHSA-vq5f-vpgw-9vcp",
"modified": "2022-05-13T01:03:32Z",
"published": "2022-05-13T01:03:32Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16845"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:3652"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:3653"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:3680"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:3681"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16845"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2018/11/msg00010.html"
},
{
"type": "WEB",
"url": "https://support.apple.com/kb/HT212818"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3812-1"
},
{
"type": "WEB",
"url": "https://www.debian.org/security/2018/dsa-4335"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00035.html"
},
{
"type": "WEB",
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html"
},
{
"type": "WEB",
"url": "http://seclists.org/fulldisclosure/2021/Sep/36"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/105868"
},
{
"type": "WEB",
"url": "http://www.securitytracker.com/id/1042039"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H",
"type": "CVSS_V3"
}
]
}
FKIE_CVE-2018-16845
Vulnerability from fkie_nvd - Published: 2018-11-07 14:29 - Updated: 2024-11-21 03:53
Severity ?
Summary
nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module.
References
| URL | Tags | ||
|---|---|---|---|
| secalert@redhat.com | http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00035.html | Mailing List, Third Party Advisory | |
| secalert@redhat.com | http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html | Mailing List, Patch, Vendor Advisory | |
| secalert@redhat.com | http://seclists.org/fulldisclosure/2021/Sep/36 | Mailing List, Third Party Advisory | |
| secalert@redhat.com | http://www.securityfocus.com/bid/105868 | Third Party Advisory, VDB Entry | |
| secalert@redhat.com | http://www.securitytracker.com/id/1042039 | Third Party Advisory, VDB Entry | |
| secalert@redhat.com | https://access.redhat.com/errata/RHSA-2018:3652 | Third Party Advisory | |
| secalert@redhat.com | https://access.redhat.com/errata/RHSA-2018:3653 | Third Party Advisory | |
| secalert@redhat.com | https://access.redhat.com/errata/RHSA-2018:3680 | Third Party Advisory | |
| secalert@redhat.com | https://access.redhat.com/errata/RHSA-2018:3681 | Third Party Advisory | |
| secalert@redhat.com | https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16845 | Issue Tracking, Third Party Advisory | |
| secalert@redhat.com | https://lists.debian.org/debian-lts-announce/2018/11/msg00010.html | Mailing List, Third Party Advisory | |
| secalert@redhat.com | https://support.apple.com/kb/HT212818 | Third Party Advisory | |
| secalert@redhat.com | https://usn.ubuntu.com/3812-1/ | Patch, Third Party Advisory | |
| secalert@redhat.com | https://www.debian.org/security/2018/dsa-4335 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00035.html | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html | Mailing List, Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://seclists.org/fulldisclosure/2021/Sep/36 | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/105868 | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securitytracker.com/id/1042039 | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2018:3652 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2018:3653 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2018:3680 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2018:3681 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16845 | Issue Tracking, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.debian.org/debian-lts-announce/2018/11/msg00010.html | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://support.apple.com/kb/HT212818 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://usn.ubuntu.com/3812-1/ | Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.debian.org/security/2018/dsa-4335 | Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| f5 | nginx | * | |
| f5 | nginx | * | |
| debian | debian_linux | 8.0 | |
| debian | debian_linux | 9.0 | |
| canonical | ubuntu_linux | 14.04 | |
| canonical | ubuntu_linux | 16.04 | |
| canonical | ubuntu_linux | 18.04 | |
| canonical | ubuntu_linux | 18.10 | |
| opensuse | leap | 15.1 | |
| apple | xcode | * |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*",
"matchCriteriaId": "774FF59B-7E9B-4DFE-BDDA-3261321F62A8",
"versionEndIncluding": "1.0.15",
"versionStartIncluding": "1.0.7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*",
"matchCriteriaId": "72F0096B-D1BF-4F0E-960B-42666438B6FD",
"versionEndIncluding": "1.15.5",
"versionStartIncluding": "1.1.3",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*",
"matchCriteriaId": "815D70A8-47D3-459C-A32C-9FEACA0659D1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
"matchCriteriaId": "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*",
"matchCriteriaId": "07C312A0-CD2C-4B9C-B064-6409B25C278F",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*",
"matchCriteriaId": "B620311B-34A3-48A6-82DF-6F078D7A4493",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:apple:xcode:*:*:*:*:*:*:*:*",
"matchCriteriaId": "BB279F6B-EE4C-4885-9CD4-657F6BD2548F",
"versionEndExcluding": "13.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module."
},
{
"lang": "es",
"value": "nginx en versiones anteriores a la 1.15.6 y 1.14.1 tiene una vulnerabilidad en ngx_http_mp4_module, que podr\u00eda permitir que un atacante provoque un bucle infinito en un proceso worker o resulte en la divulgaci\u00f3n de la memoria del proceso mediante el uso de un archivo mp4 especialmente manipulado. El problema solo afecta a nginx si est\u00e1 incluido con ngx_http_mp4_module (el m\u00f3dulo no est\u00e1 incluido por defecto) y se emplea la directiva .mp4 en el archivo de configuraci\u00f3n. Adem\u00e1s, el atacante solo es posible si un atacante puede desencadenar el procesado de un archivo mp4 especialmente manipulado con ngx_http_mp4_module."
}
],
"id": "CVE-2018-16845",
"lastModified": "2024-11-21T03:53:25.953",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 4.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 4.2,
"source": "secalert@redhat.com",
"type": "Secondary"
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 4.2,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2018-11-07T14:29:00.883",
"references": [
{
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00035.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Patch",
"Vendor Advisory"
],
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://seclists.org/fulldisclosure/2021/Sep/36"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/105868"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securitytracker.com/id/1042039"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:3652"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:3653"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:3680"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:3681"
},
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16845"
},
{
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/11/msg00010.html"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://support.apple.com/kb/HT212818"
},
{
"source": "secalert@redhat.com",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3812-1/"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2018/dsa-4335"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00035.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Patch",
"Vendor Advisory"
],
"url": "http://mailman.nginx.org/pipermail/nginx-announce/2018/000221.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://seclists.org/fulldisclosure/2021/Sep/36"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/105868"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securitytracker.com/id/1042039"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:3652"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:3653"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:3680"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:3681"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16845"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/11/msg00010.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://support.apple.com/kb/HT212818"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3812-1/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2018/dsa-4335"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-400"
}
],
"source": "secalert@redhat.com",
"type": "Primary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-835"
}
],
"source": "nvd@nist.gov",
"type": "Secondary"
}
]
}
SUSE-SU-2019:2309-1
Vulnerability from csaf_suse - Published: 2019-09-05 14:00 - Updated: 2019-09-05 14:00Summary
Security update for nginx
Notes
Title of the patch
Security update for nginx
Description of the patch
This update for nginx fixes the following issues:
Security issues fixed:
- CVE-2019-9511: Fixed a denial of service by manipulating the window size and stream prioritization (bsc#1145579).
- CVE-2019-9513: Fixed a denial of service caused by resource loops (bsc#1145580).
- CVE-2019-9516: Fixed a denial of service caused by header leaks (bsc#1145582).
- CVE-2018-16845: Fixed denial of service and memory disclosure via mp4 module (bsc#1115015).
- CVE-2018-16843: Fixed excessive memory consumption in HTTP/2 implementation (bsc#1115022).
- CVE-2018-16844: Fixed excessive CPU usage via flaw in HTTP/2 implementation (bsc#1115025).
Patchnames
SUSE-2019-2309,SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2019-2309,SUSE-SLE-Module-Server-Applications-15-SP1-2019-2309
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for nginx",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for nginx fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2019-9511: Fixed a denial of service by manipulating the window size and stream prioritization (bsc#1145579).\n- CVE-2019-9513: Fixed a denial of service caused by resource loops (bsc#1145580).\n- CVE-2019-9516: Fixed a denial of service caused by header leaks (bsc#1145582).\n- CVE-2018-16845: Fixed denial of service and memory disclosure via mp4 module (bsc#1115015).\n- CVE-2018-16843: Fixed excessive memory consumption in HTTP/2 implementation (bsc#1115022).\n- CVE-2018-16844: Fixed excessive CPU usage via flaw in HTTP/2 implementation (bsc#1115025).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2019-2309,SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2019-2309,SUSE-SLE-Module-Server-Applications-15-SP1-2019-2309",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_2309-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2019:2309-1",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20192309-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2019:2309-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2019-September/005885.html"
},
{
"category": "self",
"summary": "SUSE Bug 1115015",
"url": "https://bugzilla.suse.com/1115015"
},
{
"category": "self",
"summary": "SUSE Bug 1115022",
"url": "https://bugzilla.suse.com/1115022"
},
{
"category": "self",
"summary": "SUSE Bug 1115025",
"url": "https://bugzilla.suse.com/1115025"
},
{
"category": "self",
"summary": "SUSE Bug 1145579",
"url": "https://bugzilla.suse.com/1145579"
},
{
"category": "self",
"summary": "SUSE Bug 1145580",
"url": "https://bugzilla.suse.com/1145580"
},
{
"category": "self",
"summary": "SUSE Bug 1145582",
"url": "https://bugzilla.suse.com/1145582"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16843 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16843/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16844 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16844/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16845 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9511 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9511/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9513 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9513/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9516 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9516/"
}
],
"title": "Security update for nginx",
"tracking": {
"current_release_date": "2019-09-05T14:00:22Z",
"generator": {
"date": "2019-09-05T14:00:22Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2019:2309-1",
"initial_release_date": "2019-09-05T14:00:22Z",
"revision_history": [
{
"date": "2019-09-05T14:00:22Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "nginx-1.14.2-6.3.1.aarch64",
"product": {
"name": "nginx-1.14.2-6.3.1.aarch64",
"product_id": "nginx-1.14.2-6.3.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1.14.2-6.3.1.i586",
"product": {
"name": "nginx-1.14.2-6.3.1.i586",
"product_id": "nginx-1.14.2-6.3.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-source-1.14.2-6.3.1.noarch",
"product": {
"name": "nginx-source-1.14.2-6.3.1.noarch",
"product_id": "nginx-source-1.14.2-6.3.1.noarch"
}
},
{
"category": "product_version",
"name": "vim-plugin-nginx-1.14.2-6.3.1.noarch",
"product": {
"name": "vim-plugin-nginx-1.14.2-6.3.1.noarch",
"product_id": "vim-plugin-nginx-1.14.2-6.3.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1.14.2-6.3.1.ppc64le",
"product": {
"name": "nginx-1.14.2-6.3.1.ppc64le",
"product_id": "nginx-1.14.2-6.3.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1.14.2-6.3.1.s390x",
"product": {
"name": "nginx-1.14.2-6.3.1.s390x",
"product_id": "nginx-1.14.2-6.3.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1.14.2-6.3.1.x86_64",
"product": {
"name": "nginx-1.14.2-6.3.1.x86_64",
"product_id": "nginx-1.14.2-6.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP1",
"product": {
"name": "SUSE Linux Enterprise Module for Server Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-server-applications:15:sp1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1.14.2-6.3.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.aarch64"
},
"product_reference": "nginx-1.14.2-6.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1.14.2-6.3.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.ppc64le"
},
"product_reference": "nginx-1.14.2-6.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1.14.2-6.3.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.s390x"
},
"product_reference": "nginx-1.14.2-6.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1.14.2-6.3.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.x86_64"
},
"product_reference": "nginx-1.14.2-6.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-source-1.14.2-6.3.1.noarch as component of SUSE Linux Enterprise Module for Server Applications 15 SP1",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-source-1.14.2-6.3.1.noarch"
},
"product_reference": "nginx-source-1.14.2-6.3.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15 SP1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-16843",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16843"
}
],
"notes": [
{
"category": "general",
"text": "nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive memory consumption. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the \u0027http2\u0027 option of the \u0027listen\u0027 directive is used in a configuration file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-source-1.14.2-6.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16843",
"url": "https://www.suse.com/security/cve/CVE-2018-16843"
},
{
"category": "external",
"summary": "SUSE Bug 1115022 for CVE-2018-16843",
"url": "https://bugzilla.suse.com/1115022"
},
{
"category": "external",
"summary": "SUSE Bug 1115025 for CVE-2018-16843",
"url": "https://bugzilla.suse.com/1115025"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-source-1.14.2-6.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-source-1.14.2-6.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-05T14:00:22Z",
"details": "moderate"
}
],
"title": "CVE-2018-16843"
},
{
"cve": "CVE-2018-16844",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16844"
}
],
"notes": [
{
"category": "general",
"text": "nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive CPU usage. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the \u0027http2\u0027 option of the \u0027listen\u0027 directive is used in a configuration file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-source-1.14.2-6.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16844",
"url": "https://www.suse.com/security/cve/CVE-2018-16844"
},
{
"category": "external",
"summary": "SUSE Bug 1115022 for CVE-2018-16844",
"url": "https://bugzilla.suse.com/1115022"
},
{
"category": "external",
"summary": "SUSE Bug 1115025 for CVE-2018-16844",
"url": "https://bugzilla.suse.com/1115025"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-source-1.14.2-6.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-source-1.14.2-6.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-05T14:00:22Z",
"details": "moderate"
}
],
"title": "CVE-2018-16844"
},
{
"cve": "CVE-2018-16845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16845"
}
],
"notes": [
{
"category": "general",
"text": "nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-source-1.14.2-6.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16845",
"url": "https://www.suse.com/security/cve/CVE-2018-16845"
},
{
"category": "external",
"summary": "SUSE Bug 1115015 for CVE-2018-16845",
"url": "https://bugzilla.suse.com/1115015"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-source-1.14.2-6.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-source-1.14.2-6.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-05T14:00:22Z",
"details": "important"
}
],
"title": "CVE-2018-16845"
},
{
"cve": "CVE-2019-9511",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-9511"
}
],
"notes": [
{
"category": "general",
"text": "Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service. The attacker requests a large amount of data from a specified resource over multiple streams. They manipulate window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-source-1.14.2-6.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-9511",
"url": "https://www.suse.com/security/cve/CVE-2019-9511"
},
{
"category": "external",
"summary": "SUSE Bug 1145579 for CVE-2019-9511",
"url": "https://bugzilla.suse.com/1145579"
},
{
"category": "external",
"summary": "SUSE Bug 1146091 for CVE-2019-9511",
"url": "https://bugzilla.suse.com/1146091"
},
{
"category": "external",
"summary": "SUSE Bug 1146182 for CVE-2019-9511",
"url": "https://bugzilla.suse.com/1146182"
},
{
"category": "external",
"summary": "SUSE Bug 1193427 for CVE-2019-9511",
"url": "https://bugzilla.suse.com/1193427"
},
{
"category": "external",
"summary": "SUSE Bug 1202787 for CVE-2019-9511",
"url": "https://bugzilla.suse.com/1202787"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-source-1.14.2-6.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-source-1.14.2-6.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-05T14:00:22Z",
"details": "low"
}
],
"title": "CVE-2019-9511"
},
{
"cve": "CVE-2019-9513",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-9513"
}
],
"notes": [
{
"category": "general",
"text": "Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service. The attacker creates multiple request streams and continually shuffles the priority of the streams in a way that causes substantial churn to the priority tree. This can consume excess CPU.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-source-1.14.2-6.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-9513",
"url": "https://www.suse.com/security/cve/CVE-2019-9513"
},
{
"category": "external",
"summary": "SUSE Bug 1145580 for CVE-2019-9513",
"url": "https://bugzilla.suse.com/1145580"
},
{
"category": "external",
"summary": "SUSE Bug 1146094 for CVE-2019-9513",
"url": "https://bugzilla.suse.com/1146094"
},
{
"category": "external",
"summary": "SUSE Bug 1146184 for CVE-2019-9513",
"url": "https://bugzilla.suse.com/1146184"
},
{
"category": "external",
"summary": "SUSE Bug 1193427 for CVE-2019-9513",
"url": "https://bugzilla.suse.com/1193427"
},
{
"category": "external",
"summary": "SUSE Bug 1202787 for CVE-2019-9513",
"url": "https://bugzilla.suse.com/1202787"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-source-1.14.2-6.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-source-1.14.2-6.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-05T14:00:22Z",
"details": "low"
}
],
"title": "CVE-2019-9513"
},
{
"cve": "CVE-2019-9516",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-9516"
}
],
"notes": [
{
"category": "general",
"text": "Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service. The attacker sends a stream of headers with a 0-length header name and 0-length header value, optionally Huffman encoded into 1-byte or greater headers. Some implementations allocate memory for these headers and keep the allocation alive until the session dies. This can consume excess memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-source-1.14.2-6.3.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-9516",
"url": "https://www.suse.com/security/cve/CVE-2019-9516"
},
{
"category": "external",
"summary": "SUSE Bug 1145582 for CVE-2019-9516",
"url": "https://bugzilla.suse.com/1145582"
},
{
"category": "external",
"summary": "SUSE Bug 1146090 for CVE-2019-9516",
"url": "https://bugzilla.suse.com/1146090"
},
{
"category": "external",
"summary": "SUSE Bug 1193427 for CVE-2019-9516",
"url": "https://bugzilla.suse.com/1193427"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-source-1.14.2-6.3.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-1.14.2-6.3.1.x86_64",
"SUSE Linux Enterprise Module for Server Applications 15 SP1:nginx-source-1.14.2-6.3.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-09-05T14:00:22Z",
"details": "low"
}
],
"title": "CVE-2019-9516"
}
]
}
SUSE-SU-2019:0334-1
Vulnerability from csaf_suse - Published: 2019-02-12 12:58 - Updated: 2019-02-12 12:58Summary
Security update for nginx
Notes
Title of the patch
Security update for nginx
Description of the patch
This update for nginx to version 1.14.2 fixes the following issues:
Security vulnerabilities addressed:
- CVE-2018-16843 CVE-2018-16844: Fixed an issue whereby a client using HTTP/2
might cause excessive memory consumption and CPU usage (bsc#1115025 bsc#1115022).
- CVE-2018-16845: Fixed an issue which might result in worker process memory
disclosure whne processing of a specially crafted mp4 file with the
ngx_http_mp4_module (bsc#1115015).
Other bug fixes and changes made:
- Fixed an issue with handling of client addresses when using unix domain
listen sockets to work with datagrams on Linux.
- The logging level of the 'http request', 'https proxy request',
'unsupported protocol', 'version too low', 'no suitable key share', and
'no suitable signature algorithm' SSL errors has been lowered from 'crit' to
'info'.
- Fixed an issue with using OpenSSL 1.1.0 or newer it was not possible
to switch off 'ssl_prefer_server_ciphers' in a virtual server
if it was switched on in the default server.
- Fixed an issue with TLS 1.3 always being enabled when built with OpenSSL
1.1.0 and used with 1.1.1
- Fixed an issue with sending a disk-buffered request body to a gRPC backend
- Fixed an issue with connections of some gRPC backends might not be cached when
using the 'keepalive' directive.
- Fixed a segmentation fault, which might occur in a worker process if the
ngx_http_mp4_module was used on 32-bit platforms.
- Fixed an issue, whereby working with gRPC backends might result in excessive
memory consumption.
Patchnames
SUSE-2019-334,SUSE-SLE-Module-Development-Tools-OBS-15-2019-334,SUSE-SLE-Module-Server-Applications-15-2019-334
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for nginx",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for nginx to version 1.14.2 fixes the following issues:\n\nSecurity vulnerabilities addressed:\n\n- CVE-2018-16843 CVE-2018-16844: Fixed an issue whereby a client using HTTP/2\n might cause excessive memory consumption and CPU usage (bsc#1115025 bsc#1115022).\n- CVE-2018-16845: Fixed an issue which might result in worker process memory\n disclosure whne processing of a specially crafted mp4 file with the\n ngx_http_mp4_module (bsc#1115015).\n\nOther bug fixes and changes made:\n\n- Fixed an issue with handling of client addresses when using unix domain\n listen sockets to work with datagrams on Linux.\n- The logging level of the \u0027http request\u0027, \u0027https proxy request\u0027,\n \u0027unsupported protocol\u0027, \u0027version too low\u0027, \u0027no suitable key share\u0027, and\n \u0027no suitable signature algorithm\u0027 SSL errors has been lowered from \u0027crit\u0027 to\n \u0027info\u0027.\n- Fixed an issue with using OpenSSL 1.1.0 or newer it was not possible\n to switch off \u0027ssl_prefer_server_ciphers\u0027 in a virtual server\n if it was switched on in the default server.\n- Fixed an issue with TLS 1.3 always being enabled when built with OpenSSL\n 1.1.0 and used with 1.1.1\n- Fixed an issue with sending a disk-buffered request body to a gRPC backend\n- Fixed an issue with connections of some gRPC backends might not be cached when\n using the \u0027keepalive\u0027 directive.\n- Fixed a segmentation fault, which might occur in a worker process if the\n ngx_http_mp4_module was used on 32-bit platforms.\n- Fixed an issue, whereby working with gRPC backends might result in excessive\n memory consumption.\n ",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2019-334,SUSE-SLE-Module-Development-Tools-OBS-15-2019-334,SUSE-SLE-Module-Server-Applications-15-2019-334",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2019_0334-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2019:0334-1",
"url": "https://www.suse.com/support/update/announcement/2019/suse-su-20190334-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2019:0334-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2019-February/005106.html"
},
{
"category": "self",
"summary": "SUSE Bug 1115015",
"url": "https://bugzilla.suse.com/1115015"
},
{
"category": "self",
"summary": "SUSE Bug 1115022",
"url": "https://bugzilla.suse.com/1115022"
},
{
"category": "self",
"summary": "SUSE Bug 1115025",
"url": "https://bugzilla.suse.com/1115025"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16843 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16843/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16844 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16844/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16845 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16845/"
}
],
"title": "Security update for nginx",
"tracking": {
"current_release_date": "2019-02-12T12:58:43Z",
"generator": {
"date": "2019-02-12T12:58:43Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2019:0334-1",
"initial_release_date": "2019-02-12T12:58:43Z",
"revision_history": [
{
"date": "2019-02-12T12:58:43Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "nginx-1.14.2-3.3.1.aarch64",
"product": {
"name": "nginx-1.14.2-3.3.1.aarch64",
"product_id": "nginx-1.14.2-3.3.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1.14.2-3.3.1.i586",
"product": {
"name": "nginx-1.14.2-3.3.1.i586",
"product_id": "nginx-1.14.2-3.3.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "vim-plugin-nginx-1.14.2-3.3.1.noarch",
"product": {
"name": "vim-plugin-nginx-1.14.2-3.3.1.noarch",
"product_id": "vim-plugin-nginx-1.14.2-3.3.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1.14.2-3.3.1.ppc64le",
"product": {
"name": "nginx-1.14.2-3.3.1.ppc64le",
"product_id": "nginx-1.14.2-3.3.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1.14.2-3.3.1.s390x",
"product": {
"name": "nginx-1.14.2-3.3.1.s390x",
"product_id": "nginx-1.14.2-3.3.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1.14.2-3.3.1.x86_64",
"product": {
"name": "nginx-1.14.2-3.3.1.x86_64",
"product_id": "nginx-1.14.2-3.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Server Applications 15",
"product": {
"name": "SUSE Linux Enterprise Module for Server Applications 15",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-server-applications:15"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1.14.2-3.3.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.aarch64"
},
"product_reference": "nginx-1.14.2-3.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1.14.2-3.3.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.ppc64le"
},
"product_reference": "nginx-1.14.2-3.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1.14.2-3.3.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.s390x"
},
"product_reference": "nginx-1.14.2-3.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1.14.2-3.3.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15",
"product_id": "SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.x86_64"
},
"product_reference": "nginx-1.14.2-3.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Server Applications 15"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-16843",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16843"
}
],
"notes": [
{
"category": "general",
"text": "nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive memory consumption. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the \u0027http2\u0027 option of the \u0027listen\u0027 directive is used in a configuration file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16843",
"url": "https://www.suse.com/security/cve/CVE-2018-16843"
},
{
"category": "external",
"summary": "SUSE Bug 1115022 for CVE-2018-16843",
"url": "https://bugzilla.suse.com/1115022"
},
{
"category": "external",
"summary": "SUSE Bug 1115025 for CVE-2018-16843",
"url": "https://bugzilla.suse.com/1115025"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-02-12T12:58:43Z",
"details": "moderate"
}
],
"title": "CVE-2018-16843"
},
{
"cve": "CVE-2018-16844",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16844"
}
],
"notes": [
{
"category": "general",
"text": "nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive CPU usage. This issue affects nginx compiled with the ngx_http_v2_module (not compiled by default) if the \u0027http2\u0027 option of the \u0027listen\u0027 directive is used in a configuration file.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16844",
"url": "https://www.suse.com/security/cve/CVE-2018-16844"
},
{
"category": "external",
"summary": "SUSE Bug 1115022 for CVE-2018-16844",
"url": "https://bugzilla.suse.com/1115022"
},
{
"category": "external",
"summary": "SUSE Bug 1115025 for CVE-2018-16844",
"url": "https://bugzilla.suse.com/1115025"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-02-12T12:58:43Z",
"details": "moderate"
}
],
"title": "CVE-2018-16844"
},
{
"cve": "CVE-2018-16845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16845"
}
],
"notes": [
{
"category": "general",
"text": "nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16845",
"url": "https://www.suse.com/security/cve/CVE-2018-16845"
},
{
"category": "external",
"summary": "SUSE Bug 1115015 for CVE-2018-16845",
"url": "https://bugzilla.suse.com/1115015"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.aarch64",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.ppc64le",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.s390x",
"SUSE Linux Enterprise Module for Server Applications 15:nginx-1.14.2-3.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2019-02-12T12:58:43Z",
"details": "important"
}
],
"title": "CVE-2018-16845"
}
]
}
CNVD-2018-22807
Vulnerability from cnvd - Published: 2018-11-09
VLAI Severity ?
Title
nginx ngx_http_mp4_module组件内存泄露漏洞
Description
nginx是一款轻量级Web服务器/反向代理服务器及电子邮件(IMAP/POP3)代理服务器。
Nginx 1.15.5及之前的版本和1.14.1版本中的ngx_http_mp4_module组件存在内存泄露漏洞,该漏洞源于程序未能正确处理MP4文件。远程攻击者可利用该漏洞获取敏感信息或造成拒绝服务。
Severity
中
Patch Name
nginx ngx_http_mp4_module组件内存泄露漏洞的补丁
Patch Description
nginx是一款轻量级Web服务器/反向代理服务器及电子邮件(IMAP/POP3)代理服务器。
Nginx 1.15.5及之前的版本和1.14.1版本中的ngx_http_mp4_module组件存在内存泄露漏洞,该漏洞源于程序未能正确处理MP4文件。远程攻击者可利用该漏洞获取敏感信息或造成拒绝服务。 目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
厂商已发布漏洞修复程序,请及时关注更新: http://nginx.org/download/patch.2018.mp4.txt
Reference
https://securitytracker.com/id/1042039
Impacted products
| Name | ['Nginx nginx 1.1.3+', 'Nginx nginx 1.0.7+', 'Nginx nginx 1.14.1', 'Nginx nginx <=1.15.5'] |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2018-16845"
}
},
"description": "nginx\u662f\u4e00\u6b3e\u8f7b\u91cf\u7ea7Web\u670d\u52a1\u5668/\u53cd\u5411\u4ee3\u7406\u670d\u52a1\u5668\u53ca\u7535\u5b50\u90ae\u4ef6\uff08IMAP/POP3\uff09\u4ee3\u7406\u670d\u52a1\u5668\u3002\n\nNginx 1.15.5\u53ca\u4e4b\u524d\u7684\u7248\u672c\u548c1.14.1\u7248\u672c\u4e2d\u7684ngx_http_mp4_module\u7ec4\u4ef6\u5b58\u5728\u5185\u5b58\u6cc4\u9732\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u6b63\u786e\u5904\u7406MP4\u6587\u4ef6\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u654f\u611f\u4fe1\u606f\u6216\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002",
"discovererName": "Sam Fowler",
"formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttp://nginx.org/download/patch.2018.mp4.txt",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2018-22807",
"openTime": "2018-11-09",
"patchDescription": "nginx\u662f\u4e00\u6b3e\u8f7b\u91cf\u7ea7Web\u670d\u52a1\u5668/\u53cd\u5411\u4ee3\u7406\u670d\u52a1\u5668\u53ca\u7535\u5b50\u90ae\u4ef6\uff08IMAP/POP3\uff09\u4ee3\u7406\u670d\u52a1\u5668\u3002\r\n\r\nNginx 1.15.5\u53ca\u4e4b\u524d\u7684\u7248\u672c\u548c1.14.1\u7248\u672c\u4e2d\u7684ngx_http_mp4_module\u7ec4\u4ef6\u5b58\u5728\u5185\u5b58\u6cc4\u9732\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u6b63\u786e\u5904\u7406MP4\u6587\u4ef6\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u654f\u611f\u4fe1\u606f\u6216\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002 \u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "nginx ngx_http_mp4_module\u7ec4\u4ef6\u5185\u5b58\u6cc4\u9732\u6f0f\u6d1e\u7684\u8865\u4e01",
"products": {
"product": [
"Nginx nginx 1.1.3+",
"Nginx nginx 1.0.7+",
"Nginx nginx 1.14.1",
"Nginx nginx \u003c=1.15.5"
]
},
"referenceLink": "https://securitytracker.com/id/1042039",
"serverity": "\u4e2d",
"submitTime": "2018-11-07",
"title": "nginx ngx_http_mp4_module\u7ec4\u4ef6\u5185\u5b58\u6cc4\u9732\u6f0f\u6d1e"
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…