Home

CVE-2021-23017

Description

A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.

Risk Information

Base Score
7.7
MODERATE
Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L
EPSS Score
Exploitation Probability
73.166

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2021-23017 are fixed in Nginx 1.21.0Windows
small, powerful, scalable web/proxy server (USN-4967-1) nginx_1.14.0-0ubuntu1.9_all.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx_1.18.0-0ubuntu1.2_all.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx_1.18.0-6ubuntu2.2_amd64.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx_1.18.0-6ubuntu8.2_amd64.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx-core_1.14.0-0ubuntu1.9_i386.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx-core_1.14.0-0ubuntu1.9_amd64.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx-core_1.18.0-0ubuntu1.2_amd64.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx-core_1.18.0-6ubuntu2.2_amd64.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx-core_1.18.0-6ubuntu8.2_amd64.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx-full_1.14.0-0ubuntu1.9_i386.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx-full_1.14.0-0ubuntu1.9_amd64.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx-full_1.18.0-0ubuntu1.2_amd64.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx-full_1.18.0-6ubuntu2.2_amd64.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx-full_1.18.0-6ubuntu8.2_amd64.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx-light_1.14.0-0ubuntu1.9_i386.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx-light_1.14.0-0ubuntu1.9_amd64.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx-light_1.18.0-0ubuntu1.2_amd64.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx-light_1.18.0-6ubuntu2.2_amd64.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx-light_1.18.0-6ubuntu8.2_amd64.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx-common_1.14.0-0ubuntu1.9_all.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx-common_1.18.0-0ubuntu1.2_all.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx-common_1.18.0-6ubuntu2.2_all.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx-common_1.18.0-6ubuntu8.2_all.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx-extras_1.14.0-0ubuntu1.9_i386.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx-extras_1.14.0-0ubuntu1.9_amd64.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx-extras_1.18.0-0ubuntu1.2_amd64.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx-extras_1.18.0-6ubuntu2.2_amd64.debLinux
small, powerful, scalable web/proxy server (USN-4967-1) nginx-extras_1.18.0-6ubuntu8.2_amd64.debLinux
nginx security update(DSA-4921-1) nginx_1.14.2-2+deb10u4_all.debLinux
(RHSA-2021:2290) nginx:1.16 security update nginx-1.16.1-2.module+el8.4.0+11155+68135136.1.x86_64.rpmLinux
(RHSA-2021:2290) nginx:1.16 security update nginx-all-modules-1.16.1-2.module+el8.4.0+11155+68135136.1.noarch.rpmLinux
(RHSA-2021:2290) nginx:1.16 security update nginx-debugsource-1.16.1-2.module+el8.4.0+11155+68135136.1.x86_64.rpmLinux
(RHSA-2021:2290) nginx:1.16 security update nginx-filesystem-1.16.1-2.module+el8.4.0+11155+68135136.1.noarch.rpmLinux
(RHSA-2021:2290) nginx:1.16 security update nginx-mod-http-image-filter-1.16.1-2.module+el8.4.0+11155+68135136.1.x86_64.rpmLinux
(RHSA-2021:2290) nginx:1.16 security update nginx-mod-http-perl-1.16.1-2.module+el8.4.0+11155+68135136.1.x86_64.rpmLinux
(RHSA-2021:2290) nginx:1.16 security update nginx-mod-http-xslt-filter-1.16.1-2.module+el8.4.0+11155+68135136.1.x86_64.rpmLinux
(RHSA-2021:2290) nginx:1.16 security update nginx-mod-mail-1.16.1-2.module+el8.4.0+11155+68135136.1.x86_64.rpmLinux
(RHSA-2021:2290) nginx:1.16 security update nginx-mod-stream-1.16.1-2.module+el8.4.0+11155+68135136.1.x86_64.rpmLinux
Nginx update (ELSA-2021-2290) nginx-1.16.1-2.0.1.module+el8.4.0+20188+a733e426.1.x86_64.rpmLinux
Nginx-all-modules update (ELSA-2021-2290) nginx-all-modules-1.16.1-2.0.1.module+el8.4.0+20188+a733e426.1.noarch.rpmLinux
Nginx-filesystem update (ELSA-2021-2290) nginx-filesystem-1.16.1-2.0.1.module+el8.4.0+20188+a733e426.1.noarch.rpmLinux
Nginx-mod-http-image-filter update (ELSA-2021-2290) nginx-mod-http-image-filter-1.16.1-2.0.1.module+el8.4.0+20188+a733e426.1.x86_64.rpmLinux
Nginx-mod-http-perl update (ELSA-2021-2290) nginx-mod-http-perl-1.16.1-2.0.1.module+el8.4.0+20188+a733e426.1.x86_64.rpmLinux
Nginx-mod-http-xslt-filter update (ELSA-2021-2290) nginx-mod-http-xslt-filter-1.16.1-2.0.1.module+el8.4.0+20188+a733e426.1.x86_64.rpmLinux
Nginx-mod-mail update (ELSA-2021-2290) nginx-mod-mail-1.16.1-2.0.1.module+el8.4.0+20188+a733e426.1.x86_64.rpmLinux
Nginx-mod-stream update (ELSA-2021-2290) nginx-mod-stream-1.16.1-2.0.1.module+el8.4.0+20188+a733e426.1.x86_64.rpmLinux
(RHSA-2022:0323) nginx:1.20 security update nginx-1.20.1-1.module+el8.5.0+13723+ab304644.x86_64.rpmLinux
(RHSA-2022:0323) nginx:1.20 security update nginx-all-modules-1.20.1-1.module+el8.5.0+13723+ab304644.noarch.rpmLinux
(RHSA-2022:0323) nginx:1.20 security update nginx-debugsource-1.20.1-1.module+el8.5.0+13723+ab304644.x86_64.rpmLinux
(RHSA-2022:0323) nginx:1.20 security update nginx-filesystem-1.20.1-1.module+el8.5.0+13723+ab304644.noarch.rpmLinux
(RHSA-2022:0323) nginx:1.20 security update nginx-mod-http-image-filter-1.20.1-1.module+el8.5.0+13723+ab304644.x86_64.rpmLinux
(RHSA-2022:0323) nginx:1.20 security update nginx-mod-http-perl-1.20.1-1.module+el8.5.0+13723+ab304644.x86_64.rpmLinux
(RHSA-2022:0323) nginx:1.20 security update nginx-mod-http-xslt-filter-1.20.1-1.module+el8.5.0+13723+ab304644.x86_64.rpmLinux
(RHSA-2022:0323) nginx:1.20 security update nginx-mod-mail-1.20.1-1.module+el8.5.0+13723+ab304644.x86_64.rpmLinux
(RHSA-2022:0323) nginx:1.20 security update nginx-mod-stream-1.20.1-1.module+el8.5.0+13723+ab304644.x86_64.rpmLinux
Nginx update (ELSA-2022-0323) nginx-1.20.1-1.0.1.module+el8.5.0+20483+2c28049e.x86_64.rpmLinux
Nginx-all-modules update (ELSA-2022-0323) nginx-all-modules-1.20.1-1.0.1.module+el8.5.0+20483+2c28049e.noarch.rpmLinux
Nginx-filesystem update (ELSA-2022-0323) nginx-filesystem-1.20.1-1.0.1.module+el8.5.0+20483+2c28049e.noarch.rpmLinux
Nginx-mod-http-image-filter update (ELSA-2022-0323) nginx-mod-http-image-filter-1.20.1-1.0.1.module+el8.5.0+20483+2c28049e.x86_64.rpmLinux
Nginx-mod-http-perl update (ELSA-2022-0323) nginx-mod-http-perl-1.20.1-1.0.1.module+el8.5.0+20483+2c28049e.x86_64.rpmLinux
Nginx-mod-http-xslt-filter update (ELSA-2022-0323) nginx-mod-http-xslt-filter-1.20.1-1.0.1.module+el8.5.0+20483+2c28049e.x86_64.rpmLinux
Nginx-mod-mail update (ELSA-2022-0323) nginx-mod-mail-1.20.1-1.0.1.module+el8.5.0+20483+2c28049e.x86_64.rpmLinux
Nginx-mod-stream update (ELSA-2022-0323) nginx-mod-stream-1.20.1-1.0.1.module+el8.5.0+20483+2c28049e.x86_64.rpmLinux
nginx:1.18 security update (RLSA-2021:2259) nginx-1.16.1-2.module+el8.4.0+543+efbf198b.1.x86_64.rpmLinux
nginx:1.18 security update (RLSA-2021:2259) nginx-1.18.0-3.module+el8.4.0+544+e40554cf.1.x86_64.rpmLinux
nginx:1.18 security update (RLSA-2021:2259) nginx-mod-mail-1.16.1-2.module+el8.4.0+543+efbf198b.1.x86_64.rpmLinux
nginx:1.18 security update (RLSA-2021:2259) nginx-mod-mail-1.18.0-3.module+el8.4.0+544+e40554cf.1.x86_64.rpmLinux
nginx:1.18 security update (RLSA-2021:2259) nginx-filesystem-1.16.1-2.module+el8.4.0+543+efbf198b.1.noarch.rpmLinux
nginx:1.18 security update (RLSA-2021:2259) nginx-filesystem-1.18.0-3.module+el8.4.0+544+e40554cf.1.noarch.rpmLinux
nginx:1.18 security update (RLSA-2021:2259) nginx-mod-stream-1.16.1-2.module+el8.4.0+543+efbf198b.1.x86_64.rpmLinux
nginx:1.18 security update (RLSA-2021:2259) nginx-mod-stream-1.18.0-3.module+el8.4.0+544+e40554cf.1.x86_64.rpmLinux
nginx:1.18 security update (RLSA-2021:2259) nginx-all-modules-1.16.1-2.module+el8.4.0+543+efbf198b.1.noarch.rpmLinux
nginx:1.18 security update (RLSA-2021:2259) nginx-all-modules-1.18.0-3.module+el8.4.0+544+e40554cf.1.noarch.rpmLinux
nginx:1.18 security update (RLSA-2021:2259) nginx-mod-http-perl-1.16.1-2.module+el8.4.0+543+efbf198b.1.x86_64.rpmLinux
nginx:1.18 security update (RLSA-2021:2259) nginx-mod-http-perl-1.18.0-3.module+el8.4.0+544+e40554cf.1.x86_64.rpmLinux
nginx:1.18 security update (RLSA-2021:2259) nginx-mod-http-xslt-filter-1.16.1-2.module+el8.4.0+543+efbf198b.1.x86_64.rpmLinux
nginx:1.18 security update (RLSA-2021:2259) nginx-mod-http-xslt-filter-1.18.0-3.module+el8.4.0+544+e40554cf.1.x86_64.rpmLinux
nginx:1.18 security update (RLSA-2021:2259) nginx-mod-http-image-filter-1.16.1-2.module+el8.4.0+543+efbf198b.1.x86_64.rpmLinux
nginx:1.18 security update (RLSA-2021:2259) nginx-mod-http-image-filter-1.18.0-3.module+el8.4.0+544+e40554cf.1.x86_64.rpmLinux
nginx:1.20 security update (RLSA-2022:0323) nginx-1.20.1-1.module+el8.6.0+791+48a2bb9d.x86_64.rpmLinux
nginx:1.20 security update (RLSA-2022:0323) nginx-mod-mail-1.20.1-1.module+el8.6.0+791+48a2bb9d.x86_64.rpmLinux
nginx:1.20 security update (RLSA-2022:0323) nginx-filesystem-1.20.1-1.module+el8.6.0+791+48a2bb9d.noarch.rpmLinux
nginx:1.20 security update (RLSA-2022:0323) nginx-mod-stream-1.20.1-1.module+el8.6.0+791+48a2bb9d.x86_64.rpmLinux
nginx:1.20 security update (RLSA-2022:0323) nginx-all-modules-1.20.1-1.module+el8.6.0+791+48a2bb9d.noarch.rpmLinux
nginx:1.20 security update (RLSA-2022:0323) nginx-mod-http-perl-1.20.1-1.module+el8.6.0+791+48a2bb9d.x86_64.rpmLinux
nginx:1.20 security update (RLSA-2022:0323) nginx-mod-http-xslt-filter-1.20.1-1.module+el8.6.0+791+48a2bb9d.x86_64.rpmLinux
nginx:1.20 security update (RLSA-2022:0323) nginx-mod-http-image-filter-1.20.1-1.module+el8.6.0+791+48a2bb9d.x86_64.rpmLinux
Vulnerabilities CVE-2021-23017 are fixed in Nginx 1.21.0 (For Linux)Linux
(RHSA-2021:2259)Important: security update nginx-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpmLinux
(RHSA-2021:2259)Important: security update nginx-all-modules-1.18.0-3.module+el8.4.0+11152+f736ed63.1.noarch.rpmLinux
(RHSA-2021:2259)Important: security update nginx-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpmLinux
(RHSA-2021:2259)Important: security update nginx-debugsource-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpmLinux
(RHSA-2021:2259)Important: security update nginx-filesystem-1.18.0-3.module+el8.4.0+11152+f736ed63.1.noarch.rpmLinux
(RHSA-2021:2259)Important: security update nginx-mod-http-image-filter-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpmLinux
(RHSA-2021:2259)Important: security update nginx-mod-http-image-filter-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpmLinux
(RHSA-2021:2259)Important: security update nginx-mod-http-perl-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpmLinux
(RHSA-2021:2259)Important: security update nginx-mod-http-perl-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpmLinux
(RHSA-2021:2259)Important: security update nginx-mod-http-xslt-filter-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpmLinux
(RHSA-2021:2259)Important: security update nginx-mod-http-xslt-filter-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpmLinux
(RHSA-2021:2259)Important: security update nginx-mod-mail-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpmLinux
(RHSA-2021:2259)Important: security update nginx-mod-mail-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpmLinux
(RHSA-2021:2259)Important: security update nginx-mod-stream-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpmLinux
(RHSA-2021:2259)Important: security update nginx-mod-stream-debuginfo-1.18.0-3.module+el8.4.0+11152+f736ed63.1.x86_64.rpmLinux
(RHSA-2021:2290)Important: security update nginx-debuginfo-1.16.1-2.module+el8.4.0+11155+68135136.1.x86_64.rpmLinux
(RHSA-2021:2290)Important: security update nginx-mod-http-image-filter-debuginfo-1.16.1-2.module+el8.4.0+11155+68135136.1.x86_64.rpmLinux
(RHSA-2021:2290)Important: security update nginx-mod-http-perl-debuginfo-1.16.1-2.module+el8.4.0+11155+68135136.1.x86_64.rpmLinux
(RHSA-2021:2290)Important: security update nginx-mod-http-xslt-filter-debuginfo-1.16.1-2.module+el8.4.0+11155+68135136.1.x86_64.rpmLinux
(RHSA-2021:2290)Important: security update nginx-mod-mail-debuginfo-1.16.1-2.module+el8.4.0+11155+68135136.1.x86_64.rpmLinux
(RHSA-2021:2290)Important: security update nginx-mod-stream-debuginfo-1.16.1-2.module+el8.4.0+11155+68135136.1.x86_64.rpmLinux
Nginx update (ELSA-2021-2259) nginx-1.18.0-3.0.1.module+el8.4.0+20183+8c128c59.1.x86_64.rpmLinux
Nginx-all-modules update (ELSA-2021-2259) nginx-all-modules-1.18.0-3.0.1.module+el8.4.0+20183+8c128c59.1.noarch.rpmLinux
Nginx-filesystem update (ELSA-2021-2259) nginx-filesystem-1.18.0-3.0.1.module+el8.4.0+20183+8c128c59.1.noarch.rpmLinux
Nginx-mod-http-image-filter update (ELSA-2021-2259) nginx-mod-http-image-filter-1.18.0-3.0.1.module+el8.4.0+20183+8c128c59.1.x86_64.rpmLinux
Nginx-mod-http-perl update (ELSA-2021-2259) nginx-mod-http-perl-1.18.0-3.0.1.module+el8.4.0+20183+8c128c59.1.x86_64.rpmLinux
Nginx-mod-http-xslt-filter update (ELSA-2021-2259) nginx-mod-http-xslt-filter-1.18.0-3.0.1.module+el8.4.0+20183+8c128c59.1.x86_64.rpmLinux
Nginx-mod-mail update (ELSA-2021-2259) nginx-mod-mail-1.18.0-3.0.1.module+el8.4.0+20183+8c128c59.1.x86_64.rpmLinux
Nginx-mod-stream update (ELSA-2021-2259) nginx-mod-stream-1.18.0-3.0.1.module+el8.4.0+20183+8c128c59.1.x86_64.rpmLinux
Important: nginx:1.18 security update nginx-1.18.0-3.module_el8.4.0+2472+f736ed63.1.alma.x86_64.rpmLinux
Important: nginx:1.18 security update nginx-all-modules-1.18.0-3.module_el8.4.0+2472+f736ed63.1.alma.noarch.rpmLinux
Important: nginx:1.18 security update nginx-filesystem-1.18.0-3.module_el8.4.0+2472+f736ed63.1.alma.noarch.rpmLinux
Important: nginx:1.18 security update nginx-mod-http-image-filter-1.18.0-3.module_el8.4.0+2472+f736ed63.1.alma.x86_64.rpmLinux
Important: nginx:1.18 security update nginx-mod-http-perl-1.18.0-3.module_el8.4.0+2472+f736ed63.1.alma.x86_64.rpmLinux
Important: nginx:1.18 security update nginx-mod-http-xslt-filter-1.18.0-3.module_el8.4.0+2472+f736ed63.1.alma.x86_64.rpmLinux
Important: nginx:1.18 security update nginx-mod-mail-1.18.0-3.module_el8.4.0+2472+f736ed63.1.alma.x86_64.rpmLinux
Important: nginx:1.18 security update nginx-mod-stream-1.18.0-3.module_el8.4.0+2472+f736ed63.1.alma.x86_64.rpmLinux
Important: nginx:1.16 security update nginx-1.16.1-2.module_el8.4.0+2470+68135136.1.alma.x86_64.rpmLinux
Important: nginx:1.16 security update nginx-all-modules-1.16.1-2.module_el8.4.0+2470+68135136.1.alma.noarch.rpmLinux
Important: nginx:1.16 security update nginx-filesystem-1.16.1-2.module_el8.4.0+2470+68135136.1.alma.noarch.rpmLinux
Important: nginx:1.16 security update nginx-mod-http-image-filter-1.16.1-2.module_el8.4.0+2470+68135136.1.alma.x86_64.rpmLinux
Important: nginx:1.16 security update nginx-mod-http-perl-1.16.1-2.module_el8.4.0+2470+68135136.1.alma.x86_64.rpmLinux
Important: nginx:1.16 security update nginx-mod-http-xslt-filter-1.16.1-2.module_el8.4.0+2470+68135136.1.alma.x86_64.rpmLinux
Important: nginx:1.16 security update nginx-mod-mail-1.16.1-2.module_el8.4.0+2470+68135136.1.alma.x86_64.rpmLinux
Important: nginx:1.16 security update nginx-mod-stream-1.16.1-2.module_el8.4.0+2470+68135136.1.alma.x86_64.rpmLinux
Off-by-one Error Vulnerability (CVE-2021-23017)NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234