Mercurial > hg > nginx-vendor-current
comparison src/http/ngx_http_variables.c @ 670:ad45b044f1e5 NGINX_1_1_19
nginx 1.1.19
*) Security: specially crafted mp4 file might allow to overwrite memory
locations in a worker process if the ngx_http_mp4_module was used,
potentially resulting in arbitrary code execution (CVE-2012-2089).
Thanks to Matthew Daley.
*) Bugfix: nginx/Windows might be terminated abnormally.
Thanks to Vincent Lee.
*) Bugfix: nginx hogged CPU if all servers in an upstream were marked as
"backup".
*) Bugfix: the "allow" and "deny" directives might be inherited
incorrectly if they were used with IPv6 addresses.
*) Bugfix: the "modern_browser" and "ancient_browser" directives might
be inherited incorrectly.
*) Bugfix: timeouts might be handled incorrectly on Solaris/SPARC.
*) Bugfix: in the ngx_http_mp4_module.
| author | Igor Sysoev <http://sysoev.ru> |
|---|---|
| date | Thu, 12 Apr 2012 00:00:00 +0400 |
| parents | 9fbf3ad94cbf |
| children | bfa81a0490a2 |
comparison
equal
deleted
inserted
replaced
| 669:3f5d0be5ee74 | 670:ad45b044f1e5 |
|---|---|
| 110 */ | 110 */ |
| 111 | 111 |
| 112 /* | 112 /* |
| 113 * the $http_host, $http_user_agent, $http_referer, $http_via, | 113 * the $http_host, $http_user_agent, $http_referer, $http_via, |
| 114 * and $http_x_forwarded_for variables may be handled by generic | 114 * and $http_x_forwarded_for variables may be handled by generic |
| 115 * ngx_http_variable_unknown_header_in(), but for perfomance reasons | 115 * ngx_http_variable_unknown_header_in(), but for performance reasons |
| 116 * they are handled using dedicated entries | 116 * they are handled using dedicated entries |
| 117 */ | 117 */ |
| 118 | 118 |
| 119 static ngx_http_variable_t ngx_http_core_variables[] = { | 119 static ngx_http_variable_t ngx_http_core_variables[] = { |
| 120 | 120 |