Nginx, Canonical Ubuntu
- BOSH-release versions prior to 255.11
It was discovered that nginx incorrectly handled saving client request bodies to temporary files. A remote attacker could possibly use this issue to cause nginx to crash, resulting in a denial of service.
Users of affected versions should apply the following mitigation:
- For BOSH-only deployments, upgrade BOSH-release to version 255.11