Join the community today
Become a Member

Nginx [nginx-announce] nginx-1.4.7

Discussion in 'Nginx and PHP-FPM news & discussions' started by eva2000, Jun 7, 2014.

  1. eva2000

    eva2000 Administrator Staff Member

    May 24, 2014
    Brisbane, Australia
    Local Time:
    12:02 PM
    Nginx 1.21.x
    MariaDB 10.x
    Changes with nginx 1.4.7 18 Mar 2014

    *) Security: a heap memory buffer overflow might occur in a worker
    process while handling a specially crafted request by
    ngx_http_spdy_module, potentially resulting in arbitrary code
    execution (CVE-2014-0133).
    Thanks to Lucas Molas, researcher at Programa STIC, FundaciĆ³n Dr.
    Manuel Sadosky, Buenos Aires, Argentina.

    *) Bugfix: in the "fastcgi_next_upstream" directive.
    Thanks to Lucas Molas.

    Maxim Dounin

    nginx-announce mailing list

    Continue reading...