Want to subscribe to topics you're interested in?
Become a Member

Nginx [nginx-announce] nginx-1.5.12

Discussion in 'Nginx and PHP-FPM news & discussions' started by eva2000, Jun 7, 2014.

Tags:
  1. eva2000

    eva2000 Administrator Staff Member

    30,605
    6,862
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +10,297
    Local Time:
    8:00 AM
    Nginx 1.13.x
    MariaDB 5.5
    Changes with nginx 1.5.12 18 Mar 2014

    *) Security: a heap memory buffer overflow might occur in a worker
    process while handling a specially crafted request by
    ngx_http_spdy_module, potentially resulting in arbitrary code
    execution (CVE-2014-0133).
    Thanks to Lucas Molas, researcher at Programa STIC, FundaciĆ³n Dr.
    Manuel Sadosky, Buenos Aires, Argentina.

    *) Feature: the "proxy_protocol" parameters of the "listen" and
    "real_ip_header" directives, the $proxy_protocol_addr variable.

    *) Bugfix: in the "fastcgi_next_upstream" directive.
    Thanks to Lucas Molas.


    --
    Maxim Dounin
    http://nginx.org/en/donation.html

    _______________________________________________
    nginx-announce mailing list
    nginx-announce@nginx.org
    http://mailman.nginx.org/mailman/listinfo/nginx-announce

    Continue reading...