Welcome to Centmin Mod Community
Register Now

Nginx OpenSSL 1.1.0g & 1.0.2m Security Updates

Discussion in 'Centmin Mod News' started by eva2000, Nov 3, 2017.

Thread Status:
Not open for further replies.
  1. eva2000

    eva2000 Administrator Staff Member

    36,387
    7,992
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +12,304
    Local Time:
    5:49 AM
    Nginx 1.15.x
    MariaDB 5.5/10.x
    Centmin Mod Nginx supports both crypto libraries for LibreSSL and OpenSSL. LibreSSL is default but you can optionally switch to OpenSSL via persistent config variable, LIBRESSL_SWITCH='n'. Nginx OpenSSL has an CVE-2017-3735 & CVE-2017-3736 security update for and released OpenSSL 1.0.2m (used in 123.08stable) and OpenSSL 1.1.0g (used in 123.09beta01).

    Full details on how to update Nginx OpenSSL at Security - OpenSSL - November 2017: OpenSSL 1.0.2m & 1.1.0g Updates + Centmin Mod Nginx

    Also heads up if you missed the Wget & PHP CVE security updates here.
     
..
Thread Status:
Not open for further replies.