Search for packages
| purl | pkg:alpm/archlinux/nginx-mainline@1.21.0-1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-naz4-k1th-aaad | ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer. |
CVE-2021-3618
|
| VCID-xdng-3k7v-aaaj | 1-byte memory overwrite in resolver |
CVE-2021-23017
|
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-03-28T07:46:33.212585+00:00 | Arch Linux Importer | Fixing | VCID-xdng-3k7v-aaaj | https://security.archlinux.org/AVG-1987 | 36.0.0 |
| 2025-03-28T07:46:32.650342+00:00 | Arch Linux Importer | Fixing | VCID-naz4-k1th-aaad | https://security.archlinux.org/AVG-2103 | 36.0.0 |
| 2024-10-09T04:07:51.875992+00:00 | Arch Linux Importer | Fixing | VCID-xdng-3k7v-aaaj | https://security.archlinux.org/AVG-1987 | 34.0.2 |
| 2024-09-18T02:01:51.473464+00:00 | Arch Linux Importer | Fixing | VCID-xdng-3k7v-aaaj | https://security.archlinux.org/AVG-1987 | 34.0.1 |
| 2024-09-18T02:01:50.730978+00:00 | Arch Linux Importer | Fixing | VCID-naz4-k1th-aaad | https://security.archlinux.org/AVG-2103 | 34.0.1 |
| 2024-01-03T22:27:56.231029+00:00 | Arch Linux Importer | Fixing | VCID-xdng-3k7v-aaaj | https://security.archlinux.org/AVG-1987 | 34.0.0rc1 |
| 2024-01-03T22:27:55.588891+00:00 | Arch Linux Importer | Fixing | VCID-naz4-k1th-aaad | https://security.archlinux.org/AVG-2103 | 34.0.0rc1 |