Nginx CVE - Support for Nginx 1.27.x to fix the CVEs #13153
Labels
kind/feature
Categorizes issue or PR as related to a new feature.
needs-priority
needs-triage
Indicates an issue or PR lacks a `triage/foo` label and requires one.
Comments
ganeshkanyal
added
the
kind/feature
k8s-ci-robot
added
the
needs-triage
|
This issue is currently awaiting triage. If Ingress contributors determines this is a relevant issue, they will accept it by applying the The Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. |
# for free
to join this conversation on GitHub.
Already have an account?
# to comment
Ingress controller to support NGIINX VERSION 1.27.X
CVE-2024-7347 - Affected NGINX Open Source Version from 1.15.3 to 1.26.2 [excluding] and 1.27.0
CVE-2025-23419 - Affected NGINX Open Source Version from 1.11.4 to 1.27.4 [excluding]
CVE reported on Nginx 1.25.x
https://nvd.nist.gov/vuln/detail/cve-2024-7347
https://nvd.nist.gov/vuln/detail/CVE-2025-23419
Latest available Nginx version 1.27.4 - https://github.com/nginx/nginx/releases/tag/release-1.27.4
The text was updated successfully, but these errors were encountered: