StackPatch is live — CVE patch ops for indie SaaS, $99 lifetime founder seat (50 only).See product

Back to CVE digest

Package · nginx

`nginx` CVE matrix across Linux distros

222 CVEs tracked across 8 distro releases. Showing the 200 most-recent fix records.

Ecosystems with tracked fixes

Alpine edgeAlpine v3.18Alpine v3.19Alpine v3.20Alpine v3.21Debian bookwormDebian bullseyeDebian trixie

Recent fix records

Each row links to the full per-CVE cross-distro view. Sorted most-recent first.

Debian bullseye

Source: Debian

CVE-2009-2629→ fixed in0.7.61-3
CVE-2009-3555→ fixed in0.7.64-1
CVE-2009-3896→ fixed in0.7.62-1
CVE-2009-3898→ fixed in0.7.63-1
CVE-2011-4315→ fixed in1.1.8-1
CVE-2011-4968→ fixed in1.9.1-1
CVE-2012-1180→ fixed in1.1.17-1
CVE-2012-2089→ fixed in1.1.19-1
+29 more in Debian bullseye

Single command to patch all of these:

sudo apt-get install --only-upgrade -y nginx

Debian bookworm

Source: Debian

CVE-2009-2629→ fixed in0.7.61-3
CVE-2009-3555→ fixed in0.7.64-1
CVE-2009-3896→ fixed in0.7.62-1
CVE-2009-3898→ fixed in0.7.63-1
CVE-2011-4315→ fixed in1.1.8-1
CVE-2011-4968→ fixed in1.9.1-1
CVE-2012-1180→ fixed in1.1.17-1
CVE-2012-2089→ fixed in1.1.19-1
+29 more in Debian bookworm

Single command to patch all of these:

sudo apt-get install --only-upgrade -y nginx

Debian trixie

Source: Debian

CVE-2009-2629→ fixed in0.7.61-3
CVE-2009-3555→ fixed in0.7.64-1
CVE-2009-3896→ fixed in0.7.62-1
CVE-2009-3898→ fixed in0.7.63-1
CVE-2011-4315→ fixed in1.1.8-1
CVE-2011-4968→ fixed in1.9.1-1
CVE-2012-1180→ fixed in1.1.17-1
CVE-2012-2089→ fixed in1.1.19-1
+35 more in Debian trixie

Single command to patch all of these:

sudo apt-get install --only-upgrade -y nginx

Alpine v3.20

Source: Alpine secdb

CVE-2017-7529→ fixed in1.12.1-r0
CVE-2018-16843→ fixed in1.14.1-r0
CVE-2018-16844→ fixed in1.14.1-r0
CVE-2018-16845→ fixed in1.14.1-r0
CVE-2019-20372→ fixed in1.16.1-r6
CVE-2019-9511→ fixed in1.16.1-r0
CVE-2019-9513→ fixed in1.16.1-r0
CVE-2019-9516→ fixed in1.16.1-r0
+9 more in Alpine v3.20

Single command to patch all of these:

apk add --upgrade nginx

Alpine v3.21

Source: Alpine secdb

CVE-2017-7529→ fixed in1.12.1-r0
CVE-2018-16843→ fixed in1.14.1-r0
CVE-2018-16844→ fixed in1.14.1-r0
CVE-2018-16845→ fixed in1.14.1-r0
CVE-2019-20372→ fixed in1.16.1-r6
CVE-2019-9511→ fixed in1.16.1-r0
CVE-2019-9513→ fixed in1.16.1-r0
CVE-2019-9516→ fixed in1.16.1-r0
+9 more in Alpine v3.21

Single command to patch all of these:

apk add --upgrade nginx

Alpine edge

Source: Alpine secdb

CVE-2017-7529→ fixed in1.12.1-r0
CVE-2018-16843→ fixed in1.14.1-r0
CVE-2018-16844→ fixed in1.14.1-r0
CVE-2018-16845→ fixed in1.14.1-r0
CVE-2019-20372→ fixed in1.16.1-r6
CVE-2019-9511→ fixed in1.16.1-r0
CVE-2019-9513→ fixed in1.16.1-r0
CVE-2019-9516→ fixed in1.16.1-r0
+9 more in Alpine edge

Single command to patch all of these:

apk add --upgrade nginx

Alpine v3.18

Source: Alpine secdb

CVE-2017-7529→ fixed in1.12.1-r0
CVE-2018-16843→ fixed in1.14.1-r0
CVE-2018-16844→ fixed in1.14.1-r0
CVE-2018-16845→ fixed in1.14.1-r0
CVE-2019-20372→ fixed in1.16.1-r6
CVE-2019-9511→ fixed in1.16.1-r0
CVE-2019-9513→ fixed in1.16.1-r0
CVE-2019-9516→ fixed in1.16.1-r0
+8 more in Alpine v3.18

Single command to patch all of these:

apk add --upgrade nginx

Alpine v3.19

Source: Alpine secdb

CVE-2017-7529→ fixed in1.12.1-r0
CVE-2018-16843→ fixed in1.14.1-r0
CVE-2018-16844→ fixed in1.14.1-r0
CVE-2018-16845→ fixed in1.14.1-r0
CVE-2019-20372→ fixed in1.16.1-r6
CVE-2019-9511→ fixed in1.16.1-r0
CVE-2019-9513→ fixed in1.16.1-r0
CVE-2019-9516→ fixed in1.16.1-r0
+8 more in Alpine v3.19

Single command to patch all of these:

apk add --upgrade nginx

Is YOUR nginx patched?

5-second check on your actual server. The quickscan reads your installed nginx version and matches against the same 222-CVE catalog above.

curl https://mindsparkstack.com/scan.sh | bash

Form-based quickscan Continuous monitoring ($99 lifetime)