Mercurial > hg > nginx-site
comparison text/en/CHANGES @ 1098:bc2a379c4cb6
nginx-1.5.12, nginx-1.4.7
author | Maxim Dounin <mdounin@mdounin.ru> |
---|---|
date | Tue, 18 Mar 2014 20:21:27 +0400 |
parents | fbb81cb6b012 |
children | 2b9dc2c5e129 |
comparison
equal
deleted
inserted
replaced
1097:eeb690d4212b | 1098:bc2a379c4cb6 |
---|---|
1 | |
2 Changes with nginx 1.5.12 18 Mar 2014 | |
3 | |
4 *) Security: a heap memory buffer overflow might occur in a worker | |
5 process while handling a specially crafted request by | |
6 ngx_http_spdy_module, potentially resulting in arbitrary code | |
7 execution (CVE-2014-0133). | |
8 Thanks to Lucas Molas, researcher at Programa STIC, FundaciĆ³n Dr. | |
9 Manuel Sadosky, Buenos Aires, Argentina. | |
10 | |
11 *) Feature: the "proxy_protocol" parameters of the "listen" and | |
12 "real_ip_header" directives, the $proxy_protocol_addr variable. | |
13 | |
14 *) Bugfix: in the "fastcgi_next_upstream" directive. | |
15 Thanks to Lucas Molas. | |
16 | |
1 | 17 |
2 Changes with nginx 1.5.11 04 Mar 2014 | 18 Changes with nginx 1.5.11 04 Mar 2014 |
3 | 19 |
4 *) Security: memory corruption might occur in a worker process on 32-bit | 20 *) Security: memory corruption might occur in a worker process on 32-bit |
5 platforms while handling a specially crafted request by | 21 platforms while handling a specially crafted request by |