Inclusion of Nginx 1.21 or later in openresty builds
143 views
Skip to first unread message
mamatha b
Sep 17, 2021, 6:12:37 AM9/17/21
to openresty-en
Hello Team
Are there any timelines as to when openresty update with nginx core of 1.21 or later will be made available.
Looking for the fix for vulnerability CVE-2021-3618 which is fixed with nginx core 1.21 or later.
Thank you.
Regards
Mamatha Busi
weiping he
Sep 17, 2021, 6:18:11 AM9/17/21
to openre...@googlegroups.com
should be soon, as per the discussion slack & irc channel, ISTM will happen by the end of September, 2021
mamatha b <mamatha...@gmail.com> 于2021年9月17日周五 上午11:12写道:
--
You received this message because you are subscribed to the Google Groups "openresty-en" group.
To unsubscribe from this group and stop receiving emails from it, send an email to openresty-en...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/openresty-en/b2d2e4b7-b9df-4575-8568-66c638b558fcn%40googlegroups.com.
mamatha b
Sep 17, 2021, 7:21:31 AM9/17/21
to openresty-en
Great!
Thank you..
Message has been deleted
李俊龙
Sep 27, 2021, 4:41:39 AM9/27/21
to openresty-en
If you use the openresty official prebuilt package, then you do not need to worry about the CVE-2021-3618.
Because the issue only affects the mail module which was not compiled into the openresty release binary package.
If you compile the openresty from the source and use the mail module, then you can backport the patch yourself.
openresty will start to update with nginx core of 1.21 in the next month.
Message has been deleted
mamatha b
Oct 20, 2021, 2:11:08 AM10/20/21
to openresty-en
Thank you for the response. This helps.
Reply all
Reply to author
Forward
0 new messages