Red Hat Bugzilla – Bug 962525
CVE-2013-2070 nginx: denial of service or memory disclosure when using proxy_pass
Last modified: 2015-07-31 03:06:14 EDT
A similar security issue to CVE-2013-2028 was identified  for versions of nginx if proxy_pass to untrusted upstream HTTP servers are used, which could lead to a denial of service or a disclosure of a worker process' memory.
The problem affects nginx 1.1.4 - 1.2.8, 1.3.0 - 1.4.0 and was assigned the name CVE-2013-2070, so only Fedora 18 is affected.
Created nginx tracking bugs for this issue
Affects: fedora-18 [bug 962526]
nginx-announce ML post:
nginx-1.2.9-1.fc18 has been pushed to the Fedora 18 stable repository. If problems still persist, please make note of it in this bug report.