Amazon Linux AMI : nginx (ALAS-2017-894)
Medium Nessus Plugin ID 103228
SynopsisThe remote Amazon Linux AMI host is missing a security update.
DescriptionA flaw within the processing of ranged HTTP requests has been discovered in the range filter module of nginx. A remote attacker could possibly exploit this flaw to disclose parts of the cache file header, or, if used in combination with third party modules, disclose potentially sensitive memory by sending specially crafted HTTP requests. (CVE-2017-7529)
SolutionRun 'yum update nginx' to update your system.