This issue could potentially be exploited to execute arbitrary code on the system, resulting in a remote code-execution vulnerability. It was resolved by upgrading to nginx 0.7.4.

CVE-2017-5266 In nginx version 0.7.5, a stack-based buffer overflow in nginx while parsing malformed XSLT stylesheets has been reported. This could be exploited by sending malicious client requests to cause a denial-of-service or to result in code execution.

CVE-2017-5266 In nginx version 1.4.1, a stack-based buffer overflow in nginx while parsing malformed XSLT stylesheets has been reported. This could be exploited by sending malicious client requests to cause a denial-of-service or to result in code execution.

CVE-2017-5266 In nginx version 1.5.0, a stack-based buffer overflow in nginx while parsing malformed XSLT stylesheets has been reported. This could be exploited by sending malicious client requests to cause a denial-of-service or to result in code execution.

CVE-2017-5266 In nginx version 1.6.0, a stack-based buffer overflow in nginx while parsing malformed XSLT stylesheets has been reported. This could be exploited by sending malicious client requests to cause a denial-of-service or to result in code execution.

nginx 1.6.0 Update

A remote code-execution vulnerability has been discovered in nginx 1.6.x, which could be exploited to execute arbitrary code on the system, resulting in a remote denial-of-service (CVE-2017-5266). The update releases nginx 1.7.0 and nginx 1.7.1 fixes this vulnerability by upgrading to a new version of libxml2 2.9.3 that no longer contains the vulnerability and by removing an embedded copy of libXSLT 0.18 in favor of a separate library that provides only the XSLT functionality, thus reducing the risk of exploitation by third parties.

Advantages of Digital Marketing: 6 Reasons Why Digital Marketing Is Important
Digital marketing is a valuable asset to your business’s growth and helps you establish an authoritative online presence. In fact, 89 percent of marketers say methods, like search engine optimization (SEO), are successful. Additionally, methods like pay-per-click (PPC) advertising increase brand awareness by as much as 80 percent - so it's worth investing in your digital marketing efforts! Here are six reasons why digital marketing can help your business grow:

nginx-extras: nginx plugins that help with SEO

Nginx-extras is a package of nginx plugins that include SEO in their capabilities. The main plugin, SEO by Yoast, gives you the ability to optimize your search engine rankings using the W3C webmaster tools. There are also plugins for link building, image optimization and social media marketing. These plugins can be enabled or disabled within the nginx configuration file. Additional information about these plugins can be found on the official website.

References ^

CVE-2022-29379 "Nginx 0.7.4 Upgrade Resolves Security Issue"

Timeline

Published on: 05/25/2022 13:15:00 UTC
Last modified on: 06/03/2022 13:58:00 UTC

References