[Bug 1304304] Re: nginx ubuntu package possibly affected by CVE 2014-0160
Kai Jauslin
kjauslin at gmail.com
Tue Apr 8 18:37:32 UTC 2014
Yes, I did restart the system. I think I've found the solution in the
meantime: it's not sufficient to just update the openssl package, it's
also necessary to update libssl1.0.0. After doing this and restarting
nginx, the system does not respond to heartbeat requests anymore. Sorry,
this was not clear for me just by reading the security note.
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to nginx in Ubuntu.
https://bugs.launchpad.net/bugs/1304304
Title:
nginx ubuntu package possibly affected by CVE 2014-0160
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/nginx/+bug/1304304/+subscriptions
More information about the Ubuntu-server-bugs
mailing list