Fedora Linux 8645 Published by

A nginx security update has been released for Fedora 37.



SECURITY: Fedora 37 Update: nginx-1.22.1-1.fc37


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2022-12721789aa
2022-11-10 22:04:44.632230
--------------------------------------------------------------------------------

Name : nginx
Product : Fedora 37
Version : 1.22.1
Release : 1.fc37
URL :   https://nginx.org
Summary : A high performance web server and reverse proxy server
Description :
Nginx is a web server and a reverse proxy server for HTTP, SMTP, POP3 and
IMAP protocols, with a strong focus on high concurrency, performance and low
memory usage.

--------------------------------------------------------------------------------
Update Information:

Security: processing of a specially crafted mp4 file by the ngx_http_mp4_module
might cause a worker process crash, worker process memory disclosure, or might
have potential other impact (CVE-2022-41741, CVE-2022-41742).
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 19 2022 Felix Kaechele - 1:1.22.1-1
- update 1.22.1
- build against OpenSSL 3 on EL8
- enable kTLS support
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-12721789aa' at the command
line. For more information, refer to the dnf documentation available at
  http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
  https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________