Hey JP, thanks for letting us know.
Looking at the annoucement it doenst’ look like if affects us. From the announcement, we don’t use the
The issue only affects nginx if the "resolver" directive is used in
the configuration file. Further, the attack is only possible if an
attacker is able to forge UDP packets from the DNS server.
Though, we should be able to patch it soon anyhow. Looks like RHEL patched 1.18, we’ll have to look into how to apply the patch too.