Hello, it was a typo. The current version in noble is already with that
fix.
nginx (1.24.0-2ubuntu7.3) noble-security; urgency=medium
* SECURITY UPDATE: Session resumption
- debian/patches/CVE-2025-23419.patch: added restriction for TLSv1.3
cross-SNI session resumption in files src/http/ngx_http_request.c.
- CVE-2025-23419
Typo was also fixed in the CVE file. Thanks for report this!
** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2025-23419
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2112638
Title:
Latest patched version of nginx unavailable in 24.04 repos
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/nginx/+bug/2112638/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
