Skip to content

Commit

Permalink
SECURITY: Bump Nginx to 1.25.3 (#763)
Browse files Browse the repository at this point in the history 
The updated version contains mitigations against CVE-2023-44487 (HTTP/2 rapid reset attack).

Upstream changelog: https://nginx.org/en/CHANGES
  • Loading branch information
@lightbulbjim
lightbulbjim authored Dec 18, 2023
1 parent d0d787a commit 529267f
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions image/base/install-nginx
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,8 +2,8 @@
set -e

# version check: https://nginx.org/en/download.html
VERSION=1.23.3
HASH="75cb5787dbb9fae18b14810f91cc4343f64ce4c24e27302136fb52498042ba54"
VERSION=1.25.3
HASH="64c5b975ca287939e828303fa857d22f142b251f17808dfe41733512d9cded86"

cd /tmp
wget -q https://nginx.org/download/nginx-$VERSION.tar.gz
Expand Down

0 comments on commit 529267f

Please sign in to comment.