Uploaded image for project: 'Project Quay'
  1. Project Quay
  2. PROJQUAY-2924

nginx vulns

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Major Major
    • None
    • None
    • -area/deps, quay
    • False
    • False

      What problem/issue/behavior are you having trouble with? What do you expect to see?
      For the latest version of Quay image still using Nginx version 1.14.1, according to Nginx Security Advisories, the version of Nginx is Vulnerable to CVE-2019-9511, CVE-2019-9513, and CVE-2019-9516, but our 3.1.1 release note stated 'Updated SCL rh-nginx112 (related to CVE-2019-9511, CVE-2019-9513, CVE-2019-9516)'.

      Nginx Security Advisories:

      http://nginx.org/en/security_advisories.html

      Release Notes:

      https://access.redhat.com/documentation/en-us/red_hat_quay/3/html-single/red_hat_quay_release_notes#rn-3-101

      What is the business impact? Please also provide timeframe information.
      Security Issue

              Unassigned Unassigned
              icherapa@redhat.com Ivan C (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated: