Wind River Support Network

HomeDefectsLIN1021-4632
Fixed

LIN1021-4632 : Security Advisory - nginx - CVE-2022-3638

Created: Oct 21, 2022    Updated: Oct 31, 2022
Resolved Date: Oct 31, 2022
Found In Version: 10.21.20.1
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Userspace

Description

A vulnerability was found in Nginx and classified as problematic. This issue affects some unknown processing of the file ngx_resolver.c of the component IPv4 Off Handler. The manipulation leads to memory leak. The attack may be initiated remotely. It is recommended to apply a patch to fix this issue. The identifier VDB-211937 was assigned to this vulnerability.

CREATE(Triage):(User=admin) CVE-2022-3638 (https://nvd.nist.gov/vuln/detail/CVE-2022-3638)
Live chat
Online