Mercurial > hg > nginx-vendor-current
comparison src/core/ngx_connection.c @ 670:ad45b044f1e5 NGINX_1_1_19
nginx 1.1.19
*) Security: specially crafted mp4 file might allow to overwrite memory
locations in a worker process if the ngx_http_mp4_module was used,
potentially resulting in arbitrary code execution (CVE-2012-2089).
Thanks to Matthew Daley.
*) Bugfix: nginx/Windows might be terminated abnormally.
Thanks to Vincent Lee.
*) Bugfix: nginx hogged CPU if all servers in an upstream were marked as
"backup".
*) Bugfix: the "allow" and "deny" directives might be inherited
incorrectly if they were used with IPv6 addresses.
*) Bugfix: the "modern_browser" and "ancient_browser" directives might
be inherited incorrectly.
*) Bugfix: timeouts might be handled incorrectly on Solaris/SPARC.
*) Bugfix: in the ngx_http_mp4_module.
author | Igor Sysoev <http://sysoev.ru> |
---|---|
date | Thu, 12 Apr 2012 00:00:00 +0400 |
parents | bf8b55a5ac89 |
children | 5cb5db9975ba |
comparison
equal
deleted
inserted
replaced
669:3f5d0be5ee74 | 670:ad45b044f1e5 |
---|---|
706 } else if (ngx_event_flags & NGX_USE_EPOLL_EVENT) { | 706 } else if (ngx_event_flags & NGX_USE_EPOLL_EVENT) { |
707 | 707 |
708 /* | 708 /* |
709 * it seems that Linux-2.6.x OpenVZ sends events | 709 * it seems that Linux-2.6.x OpenVZ sends events |
710 * for closed shared listening sockets unless | 710 * for closed shared listening sockets unless |
711 * the events was explicity deleted | 711 * the events was explicitly deleted |
712 */ | 712 */ |
713 | 713 |
714 ngx_del_event(c->read, NGX_READ_EVENT, 0); | 714 ngx_del_event(c->read, NGX_READ_EVENT, 0); |
715 | 715 |
716 } else { | 716 } else { |