Changeset 445:86d441d817dd in nginx_org


Ignore:
Timestamp:
03/15/12 12:16:12 (8 years ago)
Author:
Maxim Dounin <mdounin@…>
Branch:
default
Phase:
public
Convert:
svn:fcc2d828-4ac3-e011-b76d-00259023448c/@446
Message:

nginx-1.1.17, nginx-1.0.14

Files:
9 edited

Legend:

Unmodified
Added
Removed
  • text/en/CHANGES

    r437 r445  
     1
     2Changes with nginx 1.1.17                                        15 Mar 2012
     3
     4    *) Security: content of previously freed memory might be sent to a
     5       client if backend returned specially crafted response.
     6       Thanks to Matthew Daley.
     7
     8    *) Bugfix: in the embedded perl module if used from SSI.
     9       Thanks to Matthew Daley.
     10
     11    *) Bugfix: in the ngx_http_uwsgi_module.
     12
    113
    214Changes with nginx 1.1.16                                        29 Feb 2012
     
    618    *) Feature: the "from" parameter of the "disable_symlinks" directive.
    719
    8     *) Feature: the "return" and "error_page" directives can be used to
     20    *) Feature: the "return" and "error_page" directives can now be used to
    921       return 307 redirections.
    1022
     
    4658       --with-openssl option was used.
    4759
    48     *) Bugfix: internal redirects to named locations were not limited.
     60    *) Bugfix: the number of internal redirects to named locations was not
     61       limited.
    4962
    5063    *) Bugfix: calling $r->flush() multiple times might cause errors in the
     
    5265
    5366    *) Bugfix: temporary files might be not removed if the "proxy_store"
    54        directive were used with SSI includes.
     67       directive was used with SSI includes.
    5568
    5669    *) Bugfix: in some cases non-cacheable variables (such as the $args
     
    7386    *) Bugfix: in the OpenSSL library initialization.
    7487
    75     *) Bugfix: the "proxy_redirect" directives might not be correctly
    76        inherited.
     88    *) Bugfix: the "proxy_redirect" directives might be inherited
     89       incorrectly.
    7790
    7891    *) Bugfix: memory leak during reconfiguration if the "pcre_jit"
  • text/en/CHANGES-1.0

    r440 r445  
     1
     2Changes with nginx 1.0.14                                        15 Mar 2012
     3
     4    *) Security: content of previously freed memory might be sent to a
     5       client if backend returned specially crafted response.
     6       Thanks to Matthew Daley.
     7
    18
    29Changes with nginx 1.0.13                                        05 Mar 2012
  • text/ru/CHANGES.ru

    r437 r445  
     1
     2Изменения в nginx 1.1.17                                          15.03.2012
     3
     4    *) Безопасность: содержимое ранее освобождённой памяти могло быть
     5       отправлено клиенту, если бэкенд возвращал специально созданный ответ.
     6       Спасибо Matthew Daley.
     7
     8    *) Исправление: при использовании встроенного перла из SSI.
     9       Спасибо Matthew Daley.
     10
     11    *) Исправление: в модуле ngx_http_uwsgi_module.
     12
    113
    214Изменения в nginx 1.1.16                                          29.02.2012
  • text/ru/CHANGES.ru-1.0

    r440 r445  
     1
     2Изменения в nginx 1.0.14                                          15.03.2012
     3
     4    *) Безопасность: содержимое ранее освобождённой памяти могло быть
     5       отправлено клиенту, если бэкенд возвращал специально созданный ответ.
     6       Спасибо Matthew Daley.
     7
    18
    29Изменения в nginx 1.0.13                                          05.03.2012
  • xml/en/download.xml

    r440 r445  
    1010<download last="1" changes="CHANGES">
    1111
     12<item ver="1.1.17" pgp="yes" win="yes" />
    1213<item ver="1.1.16" pgp="yes" win="yes" />
    1314<item ver="1.1.15" pgp="yes" win="yes" />
     
    3738<download last="1" changes="CHANGES-1.0">
    3839
     40<item ver="1.0.14" pgp="yes" win="yes" />
    3941<item ver="1.0.13" pgp="yes" win="yes" />
    4042<item ver="1.0.12" pgp="yes" win="yes" />
  • xml/en/security_advisories.xml

    r247 r445  
    1212
    1313<security>
     14
     15<item name="Memory disclosure with specially crafted backend responses"
     16      severity="major"
     17      good="1.1.17+, 1.0.14+"
     18      vulnerable="0.1.0-1.1.16"
     19      patch="patch.2012.memory.txt" />
    1420
    1521<item name="Vulnerabilities with invalid UTF-8 sequence on Windows"
  • xml/index.xml

    r440 r445  
    22
    33<news name="nginx news" link="/" lang="en">
     4
     5<event date="2012-03-15">
     6<para>
     7<link doc="en/download.xml">nginx-1.0.14</link>
     8stable and
     9<link doc="en/download.xml">nginx-1.1.17</link>
     10development versions have been released,
     11with the fix for the
     12<link doc="en/security_advisories.xml">memory disclosure</link>
     13security problem discovered by Matthew Daley.
     14</para>
     15</event>
    416
    517<event date="2012-03-05">
  • xml/ru/download.xml

    r440 r445  
    1010<download last="1" changes="CHANGES.ru">
    1111
     12<item ver="1.1.17" pgp="yes" win="yes" />
    1213<item ver="1.1.16" pgp="yes" win="yes" />
    1314<item ver="1.1.15" pgp="yes" win="yes" />
     
    3738<download last="1" changes="CHANGES.ru-1.0">
    3839
     40<item ver="1.0.14" pgp="yes" win="yes" />
    3941<item ver="1.0.13" pgp="yes" win="yes" />
    4042<item ver="1.0.12" pgp="yes" win="yes" />
  • xml/versions.xml

    r440 r445  
    22
    33<versions>
    4 <development> 1.1.16 </development>
    5 <stable> 1.0.13 </stable>
     4<development> 1.1.17 </development>
     5<stable> 1.0.14 </stable>
    66<legacy_stable> 0.8.55 </legacy_stable>
    77</versions>
Note: See TracChangeset for help on using the changeset viewer.