Test ID:	1.3.6.1.4.1.25623.1.1.1.2.2016.404
Category:	Debian Local Security Checks
Title:	Debian: Security Advisory (DLA-404-1)
Summary:	The remote host is missing an update for the Debian 'nginx' package(s) announced via the DLA-404-1 advisory.
Description:	Summary: The remote host is missing an update for the Debian 'nginx' package(s) announced via the DLA-404-1 advisory. Vulnerability Insight: It was discovered that there was a invalid pointer deference in nginx, a small, powerful, scalable web/proxy server. An invalid pointer dereference might occur during DNS server response processing, allowing an attacker who is able to forge UDP packets from the DNS server to cause worker process crash For Debian 6 Squeeze, this issue has been fixed in nginx version 0.7.67-3+squeeze4+deb6u1. Affected Software/OS: 'nginx' package(s) on Debian 6. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2016-0742 Debian Security Information: DSA-3473 (Google Search) http://www.debian.org/security/2016/dsa-3473 http://seclists.org/fulldisclosure/2021/Sep/36 https://security.gentoo.org/glsa/201606-06 http://mailman.nginx.org/pipermail/nginx/2016-January/049700.html RedHat Security Advisories: RHSA-2016:1425 https://access.redhat.com/errata/RHSA-2016:1425 http://www.securitytracker.com/id/1034869 SuSE Security Announcement: openSUSE-SU-2016:0371 (Google Search) http://lists.opensuse.org/opensuse-updates/2016-02/msg00042.html http://www.ubuntu.com/usn/USN-2892-1
Copyright	Copyright (C) 2023 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.