CLSA-2024-1730478623

See a problem?

Import Source

https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2024-1730478623.json

JSON Data

https://api.osv.dev/v1/vulns/CLSA-2024-1730478623

Upstream

CVE-2023-7347

CVE-2024-7347

Published

2024-11-01T16:42:17Z

Modified

2026-06-04T09:46:46.588421271Z

Summary

Fix CVE(s): CVE-2023-7347, CVE-2024-7347

Details

SECURITY UPDATE: mp4 module allows buffer underread and unordered chunks
- debian/patches/CVE-2024-7347.patch: fix buffer underread while updating stsz atom and reject unordered chunks
- CVE-2023-7347

References

https://errata.cloudlinux.com/ubuntu16-els/CLSA-2024-1730478623.html

Affected packages

TuxCare:Ubuntu:16.04

nginx

Package

Name: nginx
Purl: pkg:deb/tuxcare/nginx?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.10.3-0ubuntu0.16.04.8+tuxcare.els5

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2024-1730478623.json"

nginx-common

Package

Name: nginx-common
Purl: pkg:deb/tuxcare/nginx-common?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.10.3-0ubuntu0.16.04.8+tuxcare.els5

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2024-1730478623.json"

nginx-core

Package

Name: nginx-core
Purl: pkg:deb/tuxcare/nginx-core?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.10.3-0ubuntu0.16.04.8+tuxcare.els5

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2024-1730478623.json"

nginx-doc

Package

Name: nginx-doc
Purl: pkg:deb/tuxcare/nginx-doc?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.10.3-0ubuntu0.16.04.8+tuxcare.els5

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2024-1730478623.json"

nginx-extras

Package

Name: nginx-extras
Purl: pkg:deb/tuxcare/nginx-extras?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.10.3-0ubuntu0.16.04.8+tuxcare.els5

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2024-1730478623.json"

nginx-full

Package

Name: nginx-full
Purl: pkg:deb/tuxcare/nginx-full?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.10.3-0ubuntu0.16.04.8+tuxcare.els5

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2024-1730478623.json"

nginx-light

Package

Name: nginx-light
Purl: pkg:deb/tuxcare/nginx-light?distro=ubuntu-16.04

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.10.3-0ubuntu0.16.04.8+tuxcare.els5

Database specific

source

"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2024-1730478623.json"