Severity
Medium
Vendor
Nginx, Canonical Ubuntu
Versions Affected
- BOSH-release versions prior to 255.11
Description
It was discovered that nginx incorrectly handled saving client request bodies to temporary files. A remote attacker could possibly use this issue to cause nginx to crash, resulting in a denial of service.
Mitigation
Users of affected versions should apply the following mitigation:
- For BOSH-only deployments, upgrade BOSH-release to version 255.11
