漏洞类别:Ubuntu
漏洞等级: 
漏洞信息
It was discovered that the nginx package incorrectly handled log file permissions.
漏洞危害
A remote attacker could possibly use this issue to obtain root privileges.
解决方案
Refer to Ubuntu advisory USN-3114-1 for affected packages and patching details, or update with your package manager.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
USN-3114-1: 16.04 (Xenial) on src (nginx-common)
USN-3114-1: 16.10 (Yakkety) on src (nginx-light)
USN-3114-1: 14.04 (Kylin) on src (nginx-common)
USN-3114-1: 14.04 (Kylin) on src (nginx-core)
USN-3114-1: 16.10 (Yakkety) on src (nginx-extras)
USN-3114-1: 16.04 (Xenial) on src (nginx-core)
USN-3114-1: 16.10 (Yakkety) on src (nginx-core)
USN-3114-1: 16.10 (Yakkety) on src (nginx-common)
USN-3114-1: 14.04 (Kylin) on src (nginx-full)
USN-3114-1: 16.04 (Xenial) on src (nginx-full)
USN-3114-1: 14.04 (Kylin) on src (nginx-extras)
USN-3114-1: 16.04 (Xenial) on src (nginx-extras)
USN-3114-1: 16.10 (Yakkety) on src (nginx-full)
0day
文章评论