nginx 1.9

nginx: use-after-free during CNAME response processing in resolver

nginx: buffer overflow in ngx_gmtime() triggered by 5 digit years

NGINX ngx_http_dav_module vulnerability

NGINX ngx_http_mp4_module vulnerability

NGINX ngx_http_mp4_module vulnerability

nginx: Off-by-one in ngx_resolver_copy() when labels are followed by a pointer to a root domain name

NGINX ngx_mail_auth_http_module vulnerability

nginx: invalid pointer dereference in resolver

nginx: NULL pointer dereference while writing client request body

nginx: Integer overflow in nginx range filter module leading to memory disclosure

nginx: Excessive CPU usage via flaw in HTTP/2 implementation

nginx: Excessive memory consumption via flaw in HTTP/2 implementation

HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)

Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service

Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service

ALPACA: Application Layer Protocol Confusion - Analyzing and Mitigating Cracks in TLS Authentication

NGINX ngx_http_mp4_module vulnerability CVE-2022-41742

Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service

nginx: Denial of service and memory disclosure via mp4 module

NGINX vulnerability

nginx: Insufficient limits of CNAME resolution in resolver

nginx: HTTP request smuggling in configurations with URL redirect used as error_page

NGINX ngx_mail_proxy_module vulnerability

NGINX ngx_mail_smtp_module vulnerability