nginx vulnerability

Frank Liu gfrankliu at
Thu Nov 19 22:06:46 UTC 2020


CVE-2019-20372 mentioned a security vulnerability, but I don't see it in
Does that mean CVE-2019-20372 is not considered a security vulnerability by
nginx? Or is it because nginx standard config won't be vulnerable, and
users have to enable error_log in order to be vulnerable?

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the nginx mailing list