{"id":"ALPINE-CVE-2018-16845","details":"nginx before versions 1.15.6, 1.14.1 has a vulnerability in the ngx_http_mp4_module, which might allow an attacker to cause infinite loop in a worker process, cause a worker process crash, or might result in worker process memory disclosure by using a specially crafted mp4 file. The issue only affects nginx if it is built with the ngx_http_mp4_module (the module is not built by default) and the .mp4. directive is used in the configuration file. Further, the attack is only possible if an attacker is able to trigger processing of a specially crafted mp4 file with the ngx_http_mp4_module.","modified":"2025-12-03T22:43:41.204035Z","published":"2018-11-07T14:29:00.883Z","upstream":["CVE-2018-16845"],"references":[{"type":"ADVISORY","url":"https://security.alpinelinux.org/vuln/CVE-2018-16845"}],"affected":[{"package":{"name":"nginx","ecosystem":"Alpine:v3.10","purl":"pkg:apk/alpine/nginx?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.14.1-r0"}]}],"versions":["0.8.53-r0","0.8.54-r0","0.8.54-r1","1.0.11-r0","1.0.11-r1","1.0.14-r0","1.0.15-r0","1.0.4-r0","1.0.4-r1","1.0.5-r0","1.10.0-r0","1.10.1-r0","1.10.1-r1","1.10.1-r2","1.10.1-r3","1.10.1-r4","1.10.1-r5","1.10.1-r6","1.10.1-r7","1.10.1-r8","1.10.1-r9","1.10.2-r0","1.10.2-r1","1.10.3-r0","1.10.3-r1","1.10.3-r2","1.10.3-r3","1.10.3-r4","1.10.3-r5","1.12.0-r0","1.12.0-r1","1.12.0-r2","1.12.1-r0","1.12.1-r1","1.12.1-r2","1.12.1-r3","1.12.2-r0","1.12.2-r1","1.12.2-r2","1.12.2-r3","1.12.2-r4","1.12.2-r5","1.12.2-r6","1.14.0-r0","1.14.0-r1","1.14.0-r2","1.2.2-r0","1.2.3-r0","1.2.4-r0","1.2.5-r0","1.2.6-r0","1.2.7-r0","1.2.8-r0","1.4.0-r0","1.4.0-r1","1.4.1-r0","1.4.2-r0","1.4.2-r1","1.4.3-r0","1.4.3-r1","1.4.4-r0","1.4.4-r1","1.4.4-r2","1.4.5-r0","1.4.6-r0","1.4.7-r0","1.6.0-r0","1.6.0-r1","1.6.0-r2","1.6.0-r3","1.6.1-r0","1.6.1-r1","1.6.2-r0","1.6.2-r1","1.6.2-r2","1.6.2-r3","1.6.3-r0","1.8.0-r0","1.8.0-r1","1.8.0-r2","1.8.0-r3","1.8.1-r0","1.8.1-r1","1.9.11-r0","1.9.14-r0","1.9.14-r1"],"ecosystem_specific":{},"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2018-16845.json"}},{"package":{"name":"nginx","ecosystem":"Alpine:v3.11","purl":"pkg:apk/alpine/nginx?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.14.1-r0"}]}],"versions":["0.8.53-r0","0.8.54-r0","0.8.54-r1","1.0.11-r0","1.0.11-r1","1.0.14-r0","1.0.15-r0","1.0.4-r0","1.0.4-r1","1.0.5-r0","1.10.0-r0","1.10.1-r0","1.10.1-r1","1.10.1-r2","1.10.1-r3","1.10.1-r4","1.10.1-r5","1.10.1-r6","1.10.1-r7","1.10.1-r8","1.10.1-r9","1.10.2-r0","1.10.2-r1","1.10.3-r0","1.10.3-r1","1.10.3-r2","1.10.3-r3","1.10.3-r4","1.10.3-r5","1.12.0-r0","1.12.0-r1","1.12.0-r2","1.12.1-r0","1.12.1-r1","1.12.1-r2","1.12.1-r3","1.12.2-r0","1.12.2-r1","1.12.2-r2","1.12.2-r3","1.12.2-r4","1.12.2-r5","1.12.2-r6","1.14.0-r0","1.14.0-r1","1.14.0-r2","1.2.2-r0","1.2.3-r0","1.2.4-r0","1.2.5-r0","1.2.6-r0","1.2.7-r0","1.2.8-r0","1.4.0-r0","1.4.0-r1","1.4.1-r0","1.4.2-r0","1.4.2-r1","1.4.3-r0","1.4.3-r1","1.4.4-r0","1.4.4-r1","1.4.4-r2","1.4.5-r0","1.4.6-r0","1.4.7-r0","1.6.0-r0","1.6.0-r1","1.6.0-r2","1.6.0-r3","1.6.1-r0","1.6.1-r1","1.6.2-r0","1.6.2-r1","1.6.2-r2","1.6.2-r3","1.6.3-r0","1.8.0-r0","1.8.0-r1","1.8.0-r2","1.8.0-r3","1.8.1-r0","1.8.1-r1","1.9.11-r0","1.9.14-r0","1.9.14-r1"],"ecosystem_specific":{},"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2018-16845.json"}},{"package":{"name":"nginx","ecosystem":"Alpine:v3.12","purl":"pkg:apk/alpine/nginx?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.14.1-r0"}]}],"versions":["0.8.53-r0","0.8.54-r0","0.8.54-r1","1.0.11-r0","1.0.11-r1","1.0.14-r0","1.0.15-r0","1.0.4-r0","1.0.4-r1","1.0.5-r0","1.10.0-r0","1.10.1-r0","1.10.1-r1","1.10.1-r2","1.10.1-r3","1.10.1-r4","1.10.1-r5","1.10.1-r6","1.10.1-r7","1.10.1-r8","1.10.1-r9","1.10.2-r0","1.10.2-r1","1.10.3-r0","1.10.3-r1","1.10.3-r2","1.10.3-r3","1.10.3-r4","1.10.3-r5","1.12.0-r0","1.12.0-r1","1.12.0-r2","1.12.1-r0","1.12.1-r1","1.12.1-r2","1.12.1-r3","1.12.2-r0","1.12.2-r1","1.12.2-r2","1.12.2-r3","1.12.2-r4","1.12.2-r5","1.12.2-r6","1.14.0-r0","1.14.0-r1","1.14.0-r2","1.2.2-r0","1.2.3-r0","1.2.4-r0","1.2.5-r0","1.2.6-r0","1.2.7-r0","1.2.8-r0","1.4.0-r0","1.4.0-r1","1.4.1-r0","1.4.2-r0","1.4.2-r1","1.4.3-r0","1.4.3-r1","1.4.4-r0","1.4.4-r1","1.4.4-r2","1.4.5-r0","1.4.6-r0","1.4.7-r0","1.6.0-r0","1.6.0-r1","1.6.0-r2","1.6.0-r3","1.6.1-r0","1.6.1-r1","1.6.2-r0","1.6.2-r1","1.6.2-r2","1.6.2-r3","1.6.3-r0","1.8.0-r0","1.8.0-r1","1.8.0-r2","1.8.0-r3","1.8.1-r0","1.8.1-r1","1.9.11-r0","1.9.14-r0","1.9.14-r1"],"ecosystem_specific":{},"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2018-16845.json"}},{"package":{"name":"nginx","ecosystem":"Alpine:v3.13","purl":"pkg:apk/alpine/nginx?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.14.1-r0"}]}],"versions":["0.8.53-r0","0.8.54-r0","0.8.54-r1","1.0.11-r0","1.0.11-r1","1.0.14-r0","1.0.15-r0","1.0.4-r0","1.0.4-r1","1.0.5-r0","1.10.0-r0","1.10.1-r0","1.10.1-r1","1.10.1-r2","1.10.1-r3","1.10.1-r4","1.10.1-r5","1.10.1-r6","1.10.1-r7","1.10.1-r8","1.10.1-r9","1.10.2-r0","1.10.2-r1","1.10.3-r0","1.10.3-r1","1.10.3-r2","1.10.3-r3","1.10.3-r4","1.10.3-r5","1.12.0-r0","1.12.0-r1","1.12.0-r2","1.12.1-r0","1.12.1-r1","1.12.1-r2","1.12.1-r3","1.12.2-r0","1.12.2-r1","1.12.2-r2","1.12.2-r3","1.12.2-r4","1.12.2-r5","1.12.2-r6","1.14.0-r0","1.14.0-r1","1.14.0-r2","1.2.2-r0","1.2.3-r0","1.2.4-r0","1.2.5-r0","1.2.6-r0","1.2.7-r0","1.2.8-r0","1.4.0-r0","1.4.0-r1","1.4.1-r0","1.4.2-r0","1.4.2-r1","1.4.3-r0","1.4.3-r1","1.4.4-r0","1.4.4-r1","1.4.4-r2","1.4.5-r0","1.4.6-r0","1.4.7-r0","1.6.0-r0","1.6.0-r1","1.6.0-r2","1.6.0-r3","1.6.1-r0","1.6.1-r1","1.6.2-r0","1.6.2-r1","1.6.2-r2","1.6.2-r3","1.6.3-r0","1.8.0-r0","1.8.0-r1","1.8.0-r2","1.8.0-r3","1.8.1-r0","1.8.1-r1","1.9.11-r0","1.9.14-r0","1.9.14-r1"],"ecosystem_specific":{},"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2018-16845.json"}},{"package":{"name":"nginx","ecosystem":"Alpine:v3.14","purl":"pkg:apk/alpine/nginx?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.14.1-r0"}]}],"versions":["0.8.53-r0","0.8.54-r0","0.8.54-r1","1.0.11-r0","1.0.11-r1","1.0.14-r0","1.0.15-r0","1.0.4-r0","1.0.4-r1","1.0.5-r0","1.10.0-r0","1.10.1-r0","1.10.1-r1","1.10.1-r2","1.10.1-r3","1.10.1-r4","1.10.1-r5","1.10.1-r6","1.10.1-r7","1.10.1-r8","1.10.1-r9","1.10.2-r0","1.10.2-r1","1.10.3-r0","1.10.3-r1","1.10.3-r2","1.10.3-r3","1.10.3-r4","1.10.3-r5","1.12.0-r0","1.12.0-r1","1.12.0-r2","1.12.1-r0","1.12.1-r1","1.12.1-r2","1.12.1-r3","1.12.2-r0","1.12.2-r1","1.12.2-r2","1.12.2-r3","1.12.2-r4","1.12.2-r5","1.12.2-r6","1.14.0-r0","1.14.0-r1","1.14.0-r2","1.2.2-r0","1.2.3-r0","1.2.4-r0","1.2.5-r0","1.2.6-r0","1.2.7-r0","1.2.8-r0","1.4.0-r0","1.4.0-r1","1.4.1-r0","1.4.2-r0","1.4.2-r1","1.4.3-r0","1.4.3-r1","1.4.4-r0","1.4.4-r1","1.4.4-r2","1.4.5-r0","1.4.6-r0","1.4.7-r0","1.6.0-r0","1.6.0-r1","1.6.0-r2","1.6.0-r3","1.6.1-r0","1.6.1-r1","1.6.2-r0","1.6.2-r1","1.6.2-r2","1.6.2-r3","1.6.3-r0","1.8.0-r0","1.8.0-r1","1.8.0-r2","1.8.0-r3","1.8.1-r0","1.8.1-r1","1.9.11-r0","1.9.14-r0","1.9.14-r1"],"ecosystem_specific":{},"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2018-16845.json"}},{"package":{"name":"nginx","ecosystem":"Alpine:v3.15","purl":"pkg:apk/alpine/nginx?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.14.1-r0"}]}],"versions":["0.8.53-r0","0.8.54-r0","0.8.54-r1","1.0.11-r0","1.0.11-r1","1.0.14-r0","1.0.15-r0","1.0.4-r0","1.0.4-r1","1.0.5-r0","1.10.0-r0","1.10.1-r0","1.10.1-r1","1.10.1-r2","1.10.1-r3","1.10.1-r4","1.10.1-r5","1.10.1-r6","1.10.1-r7","1.10.1-r8","1.10.1-r9","1.10.2-r0","1.10.2-r1","1.10.3-r0","1.10.3-r1","1.10.3-r2","1.10.3-r3","1.10.3-r4","1.10.3-r5","1.12.0-r0","1.12.0-r1","1.12.0-r2","1.12.1-r0","1.12.1-r1","1.12.1-r2","1.12.1-r3","1.12.2-r0","1.12.2-r1","1.12.2-r2","1.12.2-r3","1.12.2-r4","1.12.2-r5","1.12.2-r6","1.14.0-r0","1.14.0-r1","1.14.0-r2","1.2.2-r0","1.2.3-r0","1.2.4-r0","1.2.5-r0","1.2.6-r0","1.2.7-r0","1.2.8-r0","1.4.0-r0","1.4.0-r1","1.4.1-r0","1.4.2-r0","1.4.2-r1","1.4.3-r0","1.4.3-r1","1.4.4-r0","1.4.4-r1","1.4.4-r2","1.4.5-r0","1.4.6-r0","1.4.7-r0","1.6.0-r0","1.6.0-r1","1.6.0-r2","1.6.0-r3","1.6.1-r0","1.6.1-r1","1.6.2-r0","1.6.2-r1","1.6.2-r2","1.6.2-r3","1.6.3-r0","1.8.0-r0","1.8.0-r1","1.8.0-r2","1.8.0-r3","1.8.1-r0","1.8.1-r1","1.9.11-r0","1.9.14-r0","1.9.14-r1"],"ecosystem_specific":{},"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2018-16845.json"}},{"package":{"name":"nginx","ecosystem":"Alpine:v3.16","purl":"pkg:apk/alpine/nginx?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.14.1-r0"}]}],"versions":["0.8.53-r0","0.8.54-r0","0.8.54-r1","1.0.11-r0","1.0.11-r1","1.0.14-r0","1.0.15-r0","1.0.4-r0","1.0.4-r1","1.0.5-r0","1.10.0-r0","1.10.1-r0","1.10.1-r1","1.10.1-r2","1.10.1-r3","1.10.1-r4","1.10.1-r5","1.10.1-r6","1.10.1-r7","1.10.1-r8","1.10.1-r9","1.10.2-r0","1.10.2-r1","1.10.3-r0","1.10.3-r1","1.10.3-r2","1.10.3-r3","1.10.3-r4","1.10.3-r5","1.12.0-r0","1.12.0-r1","1.12.0-r2","1.12.1-r0","1.12.1-r1","1.12.1-r2","1.12.1-r3","1.12.2-r0","1.12.2-r1","1.12.2-r2","1.12.2-r3","1.12.2-r4","1.12.2-r5","1.12.2-r6","1.14.0-r0","1.14.0-r1","1.14.0-r2","1.2.2-r0","1.2.3-r0","1.2.4-r0","1.2.5-r0","1.2.6-r0","1.2.7-r0","1.2.8-r0","1.4.0-r0","1.4.0-r1","1.4.1-r0","1.4.2-r0","1.4.2-r1","1.4.3-r0","1.4.3-r1","1.4.4-r0","1.4.4-r1","1.4.4-r2","1.4.5-r0","1.4.6-r0","1.4.7-r0","1.6.0-r0","1.6.0-r1","1.6.0-r2","1.6.0-r3","1.6.1-r0","1.6.1-r1","1.6.2-r0","1.6.2-r1","1.6.2-r2","1.6.2-r3","1.6.3-r0","1.8.0-r0","1.8.0-r1","1.8.0-r2","1.8.0-r3","1.8.1-r0","1.8.1-r1","1.9.11-r0","1.9.14-r0","1.9.14-r1"],"ecosystem_specific":{},"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2018-16845.json"}},{"package":{"name":"nginx","ecosystem":"Alpine:v3.17","purl":"pkg:apk/alpine/nginx?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.14.1-r0"}]}],"versions":["0.8.53-r0","0.8.54-r0","0.8.54-r1","1.0.11-r0","1.0.11-r1","1.0.14-r0","1.0.15-r0","1.0.4-r0","1.0.4-r1","1.0.5-r0","1.10.0-r0","1.10.1-r0","1.10.1-r1","1.10.1-r2","1.10.1-r3","1.10.1-r4","1.10.1-r5","1.10.1-r6","1.10.1-r7","1.10.1-r8","1.10.1-r9","1.10.2-r0","1.10.2-r1","1.10.3-r0","1.10.3-r1","1.10.3-r2","1.10.3-r3","1.10.3-r4","1.10.3-r5","1.12.0-r0","1.12.0-r1","1.12.0-r2","1.12.1-r0","1.12.1-r1","1.12.1-r2","1.12.1-r3","1.12.2-r0","1.12.2-r1","1.12.2-r2","1.12.2-r3","1.12.2-r4","1.12.2-r5","1.12.2-r6","1.14.0-r0","1.14.0-r1","1.14.0-r2","1.2.2-r0","1.2.3-r0","1.2.4-r0","1.2.5-r0","1.2.6-r0","1.2.7-r0","1.2.8-r0","1.4.0-r0","1.4.0-r1","1.4.1-r0","1.4.2-r0","1.4.2-r1","1.4.3-r0","1.4.3-r1","1.4.4-r0","1.4.4-r1","1.4.4-r2","1.4.5-r0","1.4.6-r0","1.4.7-r0","1.6.0-r0","1.6.0-r1","1.6.0-r2","1.6.0-r3","1.6.1-r0","1.6.1-r1","1.6.2-r0","1.6.2-r1","1.6.2-r2","1.6.2-r3","1.6.3-r0","1.8.0-r0","1.8.0-r1","1.8.0-r2","1.8.0-r3","1.8.1-r0","1.8.1-r1","1.9.11-r0","1.9.14-r0","1.9.14-r1"],"ecosystem_specific":{},"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2018-16845.json"}},{"package":{"name":"nginx","ecosystem":"Alpine:v3.18","purl":"pkg:apk/alpine/nginx?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.14.1-r0"}]}],"versions":["0.8.53-r0","0.8.54-r0","0.8.54-r1","1.0.11-r0","1.0.11-r1","1.0.14-r0","1.0.15-r0","1.0.4-r0","1.0.4-r1","1.0.5-r0","1.10.0-r0","1.10.1-r0","1.10.1-r1","1.10.1-r2","1.10.1-r3","1.10.1-r4","1.10.1-r5","1.10.1-r6","1.10.1-r7","1.10.1-r8","1.10.1-r9","1.10.2-r0","1.10.2-r1","1.10.3-r0","1.10.3-r1","1.10.3-r2","1.10.3-r3","1.10.3-r4","1.10.3-r5","1.12.0-r0","1.12.0-r1","1.12.0-r2","1.12.1-r0","1.12.1-r1","1.12.1-r2","1.12.1-r3","1.12.2-r0","1.12.2-r1","1.12.2-r2","1.12.2-r3","1.12.2-r4","1.12.2-r5","1.12.2-r6","1.14.0-r0","1.14.0-r1","1.14.0-r2","1.2.2-r0","1.2.3-r0","1.2.4-r0","1.2.5-r0","1.2.6-r0","1.2.7-r0","1.2.8-r0","1.4.0-r0","1.4.0-r1","1.4.1-r0","1.4.2-r0","1.4.2-r1","1.4.3-r0","1.4.3-r1","1.4.4-r0","1.4.4-r1","1.4.4-r2","1.4.5-r0","1.4.6-r0","1.4.7-r0","1.6.0-r0","1.6.0-r1","1.6.0-r2","1.6.0-r3","1.6.1-r0","1.6.1-r1","1.6.2-r0","1.6.2-r1","1.6.2-r2","1.6.2-r3","1.6.3-r0","1.8.0-r0","1.8.0-r1","1.8.0-r2","1.8.0-r3","1.8.1-r0","1.8.1-r1","1.9.11-r0","1.9.14-r0","1.9.14-r1"],"ecosystem_specific":{},"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2018-16845.json"}},{"package":{"name":"nginx","ecosystem":"Alpine:v3.19","purl":"pkg:apk/alpine/nginx?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.14.1-r0"}]}],"versions":["0.8.53-r0","0.8.54-r0","0.8.54-r1","1.0.11-r0","1.0.11-r1","1.0.14-r0","1.0.15-r0","1.0.4-r0","1.0.4-r1","1.0.5-r0","1.10.0-r0","1.10.1-r0","1.10.1-r1","1.10.1-r2","1.10.1-r3","1.10.1-r4","1.10.1-r5","1.10.1-r6","1.10.1-r7","1.10.1-r8","1.10.1-r9","1.10.2-r0","1.10.2-r1","1.10.3-r0","1.10.3-r1","1.10.3-r2","1.10.3-r3","1.10.3-r4","1.10.3-r5","1.12.0-r0","1.12.0-r1","1.12.0-r2","1.12.1-r0","1.12.1-r1","1.12.1-r2","1.12.1-r3","1.12.2-r0","1.12.2-r1","1.12.2-r2","1.12.2-r3","1.12.2-r4","1.12.2-r5","1.12.2-r6","1.14.0-r0","1.14.0-r1","1.14.0-r2","1.2.2-r0","1.2.3-r0","1.2.4-r0","1.2.5-r0","1.2.6-r0","1.2.7-r0","1.2.8-r0","1.4.0-r0","1.4.0-r1","1.4.1-r0","1.4.2-r0","1.4.2-r1","1.4.3-r0","1.4.3-r1","1.4.4-r0","1.4.4-r1","1.4.4-r2","1.4.5-r0","1.4.6-r0","1.4.7-r0","1.6.0-r0","1.6.0-r1","1.6.0-r2","1.6.0-r3","1.6.1-r0","1.6.1-r1","1.6.2-r0","1.6.2-r1","1.6.2-r2","1.6.2-r3","1.6.3-r0","1.8.0-r0","1.8.0-r1","1.8.0-r2","1.8.0-r3","1.8.1-r0","1.8.1-r1","1.9.11-r0","1.9.14-r0","1.9.14-r1"],"ecosystem_specific":{},"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2018-16845.json"}},{"package":{"name":"nginx","ecosystem":"Alpine:v3.20","purl":"pkg:apk/alpine/nginx?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.14.1-r0"}]}],"versions":["0.8.53-r0","0.8.54-r0","0.8.54-r1","1.0.11-r0","1.0.11-r1","1.0.14-r0","1.0.15-r0","1.0.4-r0","1.0.4-r1","1.0.5-r0","1.10.0-r0","1.10.1-r0","1.10.1-r1","1.10.1-r2","1.10.1-r3","1.10.1-r4","1.10.1-r5","1.10.1-r6","1.10.1-r7","1.10.1-r8","1.10.1-r9","1.10.2-r0","1.10.2-r1","1.10.3-r0","1.10.3-r1","1.10.3-r2","1.10.3-r3","1.10.3-r4","1.10.3-r5","1.12.0-r0","1.12.0-r1","1.12.0-r2","1.12.1-r0","1.12.1-r1","1.12.1-r2","1.12.1-r3","1.12.2-r0","1.12.2-r1","1.12.2-r2","1.12.2-r3","1.12.2-r4","1.12.2-r5","1.12.2-r6","1.14.0-r0","1.14.0-r1","1.14.0-r2","1.2.2-r0","1.2.3-r0","1.2.4-r0","1.2.5-r0","1.2.6-r0","1.2.7-r0","1.2.8-r0","1.4.0-r0","1.4.0-r1","1.4.1-r0","1.4.2-r0","1.4.2-r1","1.4.3-r0","1.4.3-r1","1.4.4-r0","1.4.4-r1","1.4.4-r2","1.4.5-r0","1.4.6-r0","1.4.7-r0","1.6.0-r0","1.6.0-r1","1.6.0-r2","1.6.0-r3","1.6.1-r0","1.6.1-r1","1.6.2-r0","1.6.2-r1","1.6.2-r2","1.6.2-r3","1.6.3-r0","1.8.0-r0","1.8.0-r1","1.8.0-r2","1.8.0-r3","1.8.1-r0","1.8.1-r1","1.9.11-r0","1.9.14-r0","1.9.14-r1"],"ecosystem_specific":{},"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2018-16845.json"}},{"package":{"name":"nginx","ecosystem":"Alpine:v3.21","purl":"pkg:apk/alpine/nginx?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.14.1-r0"}]}],"versions":["0.8.53-r0","0.8.54-r0","0.8.54-r1","1.0.11-r0","1.0.11-r1","1.0.14-r0","1.0.15-r0","1.0.4-r0","1.0.4-r1","1.0.5-r0","1.10.0-r0","1.10.1-r0","1.10.1-r1","1.10.1-r2","1.10.1-r3","1.10.1-r4","1.10.1-r5","1.10.1-r6","1.10.1-r7","1.10.1-r8","1.10.1-r9","1.10.2-r0","1.10.2-r1","1.10.3-r0","1.10.3-r1","1.10.3-r2","1.10.3-r3","1.10.3-r4","1.10.3-r5","1.12.0-r0","1.12.0-r1","1.12.0-r2","1.12.1-r0","1.12.1-r1","1.12.1-r2","1.12.1-r3","1.12.2-r0","1.12.2-r1","1.12.2-r2","1.12.2-r3","1.12.2-r4","1.12.2-r5","1.12.2-r6","1.14.0-r0","1.14.0-r1","1.14.0-r2","1.2.2-r0","1.2.3-r0","1.2.4-r0","1.2.5-r0","1.2.6-r0","1.2.7-r0","1.2.8-r0","1.4.0-r0","1.4.0-r1","1.4.1-r0","1.4.2-r0","1.4.2-r1","1.4.3-r0","1.4.3-r1","1.4.4-r0","1.4.4-r1","1.4.4-r2","1.4.5-r0","1.4.6-r0","1.4.7-r0","1.6.0-r0","1.6.0-r1","1.6.0-r2","1.6.0-r3","1.6.1-r0","1.6.1-r1","1.6.2-r0","1.6.2-r1","1.6.2-r2","1.6.2-r3","1.6.3-r0","1.8.0-r0","1.8.0-r1","1.8.0-r2","1.8.0-r3","1.8.1-r0","1.8.1-r1","1.9.11-r0","1.9.14-r0","1.9.14-r1"],"ecosystem_specific":{},"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2018-16845.json"}},{"package":{"name":"nginx","ecosystem":"Alpine:v3.22","purl":"pkg:apk/alpine/nginx?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.14.1-r0"}]}],"versions":["0.8.53-r0","0.8.54-r0","0.8.54-r1","1.0.11-r0","1.0.11-r1","1.0.14-r0","1.0.15-r0","1.0.4-r0","1.0.4-r1","1.0.5-r0","1.10.0-r0","1.10.1-r0","1.10.1-r1","1.10.1-r2","1.10.1-r3","1.10.1-r4","1.10.1-r5","1.10.1-r6","1.10.1-r7","1.10.1-r8","1.10.1-r9","1.10.2-r0","1.10.2-r1","1.10.3-r0","1.10.3-r1","1.10.3-r2","1.10.3-r3","1.10.3-r4","1.10.3-r5","1.12.0-r0","1.12.0-r1","1.12.0-r2","1.12.1-r0","1.12.1-r1","1.12.1-r2","1.12.1-r3","1.12.2-r0","1.12.2-r1","1.12.2-r2","1.12.2-r3","1.12.2-r4","1.12.2-r5","1.12.2-r6","1.14.0-r0","1.14.0-r1","1.14.0-r2","1.2.2-r0","1.2.3-r0","1.2.4-r0","1.2.5-r0","1.2.6-r0","1.2.7-r0","1.2.8-r0","1.4.0-r0","1.4.0-r1","1.4.1-r0","1.4.2-r0","1.4.2-r1","1.4.3-r0","1.4.3-r1","1.4.4-r0","1.4.4-r1","1.4.4-r2","1.4.5-r0","1.4.6-r0","1.4.7-r0","1.6.0-r0","1.6.0-r1","1.6.0-r2","1.6.0-r3","1.6.1-r0","1.6.1-r1","1.6.2-r0","1.6.2-r1","1.6.2-r2","1.6.2-r3","1.6.3-r0","1.8.0-r0","1.8.0-r1","1.8.0-r2","1.8.0-r3","1.8.1-r0","1.8.1-r1","1.9.11-r0","1.9.14-r0","1.9.14-r1"],"ecosystem_specific":{},"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2018-16845.json"}},{"package":{"name":"nginx","ecosystem":"Alpine:v3.23","purl":"pkg:apk/alpine/nginx?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.14.1-r0"}]}],"versions":["0.8.53-r0","0.8.54-r0","0.8.54-r1","1.0.11-r0","1.0.11-r1","1.0.14-r0","1.0.15-r0","1.0.4-r0","1.0.4-r1","1.0.5-r0","1.10.0-r0","1.10.1-r0","1.10.1-r1","1.10.1-r2","1.10.1-r3","1.10.1-r4","1.10.1-r5","1.10.1-r6","1.10.1-r7","1.10.1-r8","1.10.1-r9","1.10.2-r0","1.10.2-r1","1.10.3-r0","1.10.3-r1","1.10.3-r2","1.10.3-r3","1.10.3-r4","1.10.3-r5","1.12.0-r0","1.12.0-r1","1.12.0-r2","1.12.1-r0","1.12.1-r1","1.12.1-r2","1.12.1-r3","1.12.2-r0","1.12.2-r1","1.12.2-r2","1.12.2-r3","1.12.2-r4","1.12.2-r5","1.12.2-r6","1.14.0-r0","1.14.0-r1","1.14.0-r2","1.2.2-r0","1.2.3-r0","1.2.4-r0","1.2.5-r0","1.2.6-r0","1.2.7-r0","1.2.8-r0","1.4.0-r0","1.4.0-r1","1.4.1-r0","1.4.2-r0","1.4.2-r1","1.4.3-r0","1.4.3-r1","1.4.4-r0","1.4.4-r1","1.4.4-r2","1.4.5-r0","1.4.6-r0","1.4.7-r0","1.6.0-r0","1.6.0-r1","1.6.0-r2","1.6.0-r3","1.6.1-r0","1.6.1-r1","1.6.2-r0","1.6.2-r1","1.6.2-r2","1.6.2-r3","1.6.3-r0","1.8.0-r0","1.8.0-r1","1.8.0-r2","1.8.0-r3","1.8.1-r0","1.8.1-r1","1.9.11-r0","1.9.14-r0","1.9.14-r1"],"ecosystem_specific":{},"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2018-16845.json"}},{"package":{"name":"nginx","ecosystem":"Alpine:v3.6","purl":"pkg:apk/alpine/nginx?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.12.2-r2"}]}],"versions":["0.8.53-r0","0.8.54-r0","0.8.54-r1","1.0.11-r0","1.0.11-r1","1.0.14-r0","1.0.15-r0","1.0.4-r0","1.0.4-r1","1.0.5-r0","1.10.0-r0","1.10.1-r0","1.10.1-r1","1.10.1-r2","1.10.1-r3","1.10.1-r4","1.10.1-r5","1.10.1-r6","1.10.1-r7","1.10.1-r8","1.10.1-r9","1.10.2-r0","1.10.2-r1","1.10.3-r0","1.10.3-r1","1.10.3-r2","1.10.3-r3","1.10.3-r4","1.10.3-r5","1.12.0-r0","1.12.0-r1","1.12.0-r2","1.12.1-r0","1.12.2-r0","1.12.2-r1","1.2.2-r0","1.2.3-r0","1.2.4-r0","1.2.5-r0","1.2.6-r0","1.2.7-r0","1.2.8-r0","1.4.0-r0","1.4.0-r1","1.4.1-r0","1.4.2-r0","1.4.2-r1","1.4.3-r0","1.4.3-r1","1.4.4-r0","1.4.4-r1","1.4.4-r2","1.4.5-r0","1.4.6-r0","1.4.7-r0","1.6.0-r0","1.6.0-r1","1.6.0-r2","1.6.0-r3","1.6.1-r0","1.6.1-r1","1.6.2-r0","1.6.2-r1","1.6.2-r2","1.6.2-r3","1.6.3-r0","1.8.0-r0","1.8.0-r1","1.8.0-r2","1.8.0-r3","1.8.1-r0","1.8.1-r1","1.9.11-r0","1.9.14-r0","1.9.14-r1"],"ecosystem_specific":{},"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2018-16845.json"}},{"package":{"name":"nginx","ecosystem":"Alpine:v3.7","purl":"pkg:apk/alpine/nginx?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.12.1-r4"}]}],"versions":["0.8.53-r0","0.8.54-r0","0.8.54-r1","1.0.11-r0","1.0.11-r1","1.0.14-r0","1.0.15-r0","1.0.4-r0","1.0.4-r1","1.0.5-r0","1.10.0-r0","1.10.1-r0","1.10.1-r1","1.10.1-r2","1.10.1-r3","1.10.1-r4","1.10.1-r5","1.10.1-r6","1.10.1-r7","1.10.1-r8","1.10.1-r9","1.10.2-r0","1.10.2-r1","1.10.3-r0","1.10.3-r1","1.10.3-r2","1.10.3-r3","1.10.3-r4","1.10.3-r5","1.12.0-r0","1.12.0-r1","1.12.0-r2","1.12.1-r0","1.12.1-r1","1.12.1-r2","1.12.1-r3","1.2.2-r0","1.2.3-r0","1.2.4-r0","1.2.5-r0","1.2.6-r0","1.2.7-r0","1.2.8-r0","1.4.0-r0","1.4.0-r1","1.4.1-r0","1.4.2-r0","1.4.2-r1","1.4.3-r0","1.4.3-r1","1.4.4-r0","1.4.4-r1","1.4.4-r2","1.4.5-r0","1.4.6-r0","1.4.7-r0","1.6.0-r0","1.6.0-r1","1.6.0-r2","1.6.0-r3","1.6.1-r0","1.6.1-r1","1.6.2-r0","1.6.2-r1","1.6.2-r2","1.6.2-r3","1.6.3-r0","1.8.0-r0","1.8.0-r1","1.8.0-r2","1.8.0-r3","1.8.1-r0","1.8.1-r1","1.9.11-r0","1.9.14-r0","1.9.14-r1"],"ecosystem_specific":{},"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2018-16845.json"}},{"package":{"name":"nginx","ecosystem":"Alpine:v3.8","purl":"pkg:apk/alpine/nginx?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.14.1-r0"}]}],"versions":["0.8.53-r0","0.8.54-r0","0.8.54-r1","1.0.11-r0","1.0.11-r1","1.0.14-r0","1.0.15-r0","1.0.4-r0","1.0.4-r1","1.0.5-r0","1.10.0-r0","1.10.1-r0","1.10.1-r1","1.10.1-r2","1.10.1-r3","1.10.1-r4","1.10.1-r5","1.10.1-r6","1.10.1-r7","1.10.1-r8","1.10.1-r9","1.10.2-r0","1.10.2-r1","1.10.3-r0","1.10.3-r1","1.10.3-r2","1.10.3-r3","1.10.3-r4","1.10.3-r5","1.12.0-r0","1.12.0-r1","1.12.0-r2","1.12.1-r0","1.12.1-r1","1.12.1-r2","1.12.1-r3","1.12.2-r0","1.12.2-r1","1.12.2-r2","1.12.2-r3","1.12.2-r4","1.12.2-r5","1.12.2-r6","1.14.0-r0","1.14.0-r1","1.2.2-r0","1.2.3-r0","1.2.4-r0","1.2.5-r0","1.2.6-r0","1.2.7-r0","1.2.8-r0","1.4.0-r0","1.4.0-r1","1.4.1-r0","1.4.2-r0","1.4.2-r1","1.4.3-r0","1.4.3-r1","1.4.4-r0","1.4.4-r1","1.4.4-r2","1.4.5-r0","1.4.6-r0","1.4.7-r0","1.6.0-r0","1.6.0-r1","1.6.0-r2","1.6.0-r3","1.6.1-r0","1.6.1-r1","1.6.2-r0","1.6.2-r1","1.6.2-r2","1.6.2-r3","1.6.3-r0","1.8.0-r0","1.8.0-r1","1.8.0-r2","1.8.0-r3","1.8.1-r0","1.8.1-r1","1.9.11-r0","1.9.14-r0","1.9.14-r1"],"ecosystem_specific":{},"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2018-16845.json"}},{"package":{"name":"nginx","ecosystem":"Alpine:v3.9","purl":"pkg:apk/alpine/nginx?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.14.1-r0"}]}],"versions":["0.8.53-r0","0.8.54-r0","0.8.54-r1","1.0.11-r0","1.0.11-r1","1.0.14-r0","1.0.15-r0","1.0.4-r0","1.0.4-r1","1.0.5-r0","1.10.0-r0","1.10.1-r0","1.10.1-r1","1.10.1-r2","1.10.1-r3","1.10.1-r4","1.10.1-r5","1.10.1-r6","1.10.1-r7","1.10.1-r8","1.10.1-r9","1.10.2-r0","1.10.2-r1","1.10.3-r0","1.10.3-r1","1.10.3-r2","1.10.3-r3","1.10.3-r4","1.10.3-r5","1.12.0-r0","1.12.0-r1","1.12.0-r2","1.12.1-r0","1.12.1-r1","1.12.1-r2","1.12.1-r3","1.12.2-r0","1.12.2-r1","1.12.2-r2","1.12.2-r3","1.12.2-r4","1.12.2-r5","1.12.2-r6","1.14.0-r0","1.14.0-r1","1.14.0-r2","1.2.2-r0","1.2.3-r0","1.2.4-r0","1.2.5-r0","1.2.6-r0","1.2.7-r0","1.2.8-r0","1.4.0-r0","1.4.0-r1","1.4.1-r0","1.4.2-r0","1.4.2-r1","1.4.3-r0","1.4.3-r1","1.4.4-r0","1.4.4-r1","1.4.4-r2","1.4.5-r0","1.4.6-r0","1.4.7-r0","1.6.0-r0","1.6.0-r1","1.6.0-r2","1.6.0-r3","1.6.1-r0","1.6.1-r1","1.6.2-r0","1.6.2-r1","1.6.2-r2","1.6.2-r3","1.6.3-r0","1.8.0-r0","1.8.0-r1","1.8.0-r2","1.8.0-r3","1.8.1-r0","1.8.1-r1","1.9.11-r0","1.9.14-r0","1.9.14-r1"],"ecosystem_specific":{},"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/alpine/ALPINE-CVE-2018-16845.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H"}]}