A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
A product calculates or uses an incorrect maximum or minimum value that is 1 more, or 1 less, than the correct value.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Nginx | F5 | 0.6.18 (including) | 1.20.1 (excluding) |
| 3scale API Management 2.11 on RHEL 7 | RedHat | 3scale-amp2/3scale-rhel7-operator:1.14.0-4 | * |
| 3scale API Management 2.11 on RHEL 7 | RedHat | 3scale-amp2/3scale-rhel7-operator-metadata:2.11.0-16 | * |
| 3scale API Management 2.11 on RHEL 7 | RedHat | 3scale-amp2/apicast-rhel7-operator:1.14.0-3 | * |
| 3scale API Management 2.11 on RHEL 7 | RedHat | 3scale-amp2/apicast-rhel7-operator-metadata:2.11.0-9 | * |
| 3scale API Management 2.11 on RHEL 7 | RedHat | 3scale-amp2/memcached-rhel7:1.4.16-38 | * |
| 3scale API Management 2.11 on RHEL 7 | RedHat | 3scale-amp2/system-rhel7:1.15.0-8 | * |
| 3scale API Management 2.11 on RHEL 8 | RedHat | 3scale-amp2/apicast-gateway-rhel8:1.20.0-6 | * |
| 3scale API Management 2.11 on RHEL 8 | RedHat | 3scale-amp2/backend-rhel8:1.14.0-3 | * |
| 3scale API Management 2.11 on RHEL 8 | RedHat | 3scale-amp2/toolbox-rhel8:1.6.0-7 | * |
| 3scale API Management 2.11 on RHEL 8 | RedHat | 3scale-amp2/zync-rhel8:1.14.0-3 | * |
| Red Hat Advanced Cluster Management for Kubernetes 2.1 for RHEL 8 | RedHat | rhacm2/acm-must-gather-rhel8:v2.1.11-2 | * |
| Red Hat Advanced Cluster Management for Kubernetes 2.3 for RHEL 7 | RedHat | rhacm2/management-ingress-rhel7:v2.3.3-3 | * |
| Red Hat Ansible Tower 3.8 for RHEL 7 | RedHat | ansible-tower-38/ansible-tower-rhel7:3.8.4-1 | * |
| Red Hat Automation Hub 4.2 for RHEL 7 | RedHat | automation-hub-0:4.2.5-1.el7pc | * |
| Red Hat Automation Hub 4.2 for RHEL 7 | RedHat | python-galaxy-ng-0:4.2.5-2.el7pc | * |
| Red Hat Automation Hub 4.2 for RHEL 7 | RedHat | python-pulpcore-0:3.7.6-1.el7pc | * |
| Red Hat Automation Hub 4.2 for RHEL 8 | RedHat | automation-hub-0:4.2.5-1.el8pc | * |
| Red Hat Automation Hub 4.2 for RHEL 8 | RedHat | python-galaxy-ng-0:4.2.5-2.el8pc | * |
| Red Hat Automation Hub 4.2 for RHEL 8 | RedHat | python-pulpcore-0:3.7.6-1.el8pc | * |
| Red Hat Enterprise Linux 8 | RedHat | nginx:1.18-8040020210526100943.522a0ee4 | * |
| Red Hat Enterprise Linux 8 | RedHat | nginx:1.16-8040020210526102347.522a0ee4 | * |
| Red Hat Enterprise Linux 8 | RedHat | nginx:1.20-8050020211221125012.c5368500 | * |
| Red Hat Enterprise Linux 8.1 Extended Update Support | RedHat | nginx:1.16-8010020210526102741.c27ad7f8 | * |
| Red Hat Enterprise Linux 8.2 Extended Update Support | RedHat | nginx:1.16-8020020210526102648.4cda2c84 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 7 | RedHat | rh-nginx118-nginx-1:1.18.0-3.el7 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 7 | RedHat | rh-nginx116-nginx-1:1.16.1-6.el7 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 7.7 EUS | RedHat | rh-nginx118-nginx-1:1.18.0-3.el7 | * |
| Red Hat Software Collections for Red Hat Enterprise Linux 7.7 EUS | RedHat | rh-nginx116-nginx-1:1.16.1-6.el7 | * |
| Nginx | Ubuntu | bionic | * |
| Nginx | Ubuntu | devel | * |
| Nginx | Ubuntu | esm-infra-legacy/trusty | * |
| Nginx | Ubuntu | esm-infra/bionic | * |
| Nginx | Ubuntu | esm-infra/focal | * |
| Nginx | Ubuntu | esm-infra/xenial | * |
| Nginx | Ubuntu | focal | * |
| Nginx | Ubuntu | groovy | * |
| Nginx | Ubuntu | hirsute | * |
| Nginx | Ubuntu | impish | * |
| Nginx | Ubuntu | jammy | * |
| Nginx | Ubuntu | trusty | * |
| Nginx | Ubuntu | trusty/esm | * |
| Nginx | Ubuntu | xenial | * |