CVE-2016-1000103

Publication date 3 February 2020

Last updated 4 August 2025

Ubuntu priority

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none

Read the notes from the security team

Status

Show unmaintained releases

Package	Ubuntu Release	Status
nginx	16.04 LTS xenial	Not affected
	15.10 wily	Not affected
	14.04 LTS trusty	Not affected
	12.04 LTS precise	Not affected

How can I get the fixes?
What do statuses mean?

Notes

seth-arnold

I believe this is HTTPoxy, but nginx doesn't do cgi, only FastCGI so addressing this is an admin configuration, not code modification

mdeslaur

nothing to do with the nginx package, making as not-affected

References

MITRE
NVD
Launchpad
Debian

Other references

https://www.cve.org/CVERecord?id=CVE-2016-1000103