Description
The resolver in nginx before 1.8.1 and 1.9.x before 1.9.10 allows remote attackers to cause a denial of service (invalid pointer dereference and worker process crash) via a crafted UDP DNS response.
Remediation
References
Related Vulnerabilities
MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-3455)
MySQL CVE-2017-10227 Vulnerability (CVE-2017-10227)
WordPress Plugin Post Custom Templates Lite Cross-Site Scripting (1.6)
WordPress Plugin Custom Global Variables Cross-Site Scripting (1.0.5)
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-37148)