Mercurial > hg > nginx-vendor-current
comparison src/event/ngx_event_openssl.c @ 670:ad45b044f1e5 NGINX_1_1_19
nginx 1.1.19
*) Security: specially crafted mp4 file might allow to overwrite memory
locations in a worker process if the ngx_http_mp4_module was used,
potentially resulting in arbitrary code execution (CVE-2012-2089).
Thanks to Matthew Daley.
*) Bugfix: nginx/Windows might be terminated abnormally.
Thanks to Vincent Lee.
*) Bugfix: nginx hogged CPU if all servers in an upstream were marked as
"backup".
*) Bugfix: the "allow" and "deny" directives might be inherited
incorrectly if they were used with IPv6 addresses.
*) Bugfix: the "modern_browser" and "ancient_browser" directives might
be inherited incorrectly.
*) Bugfix: timeouts might be handled incorrectly on Solaris/SPARC.
*) Bugfix: in the ngx_http_mp4_module.
| author | Igor Sysoev <http://sysoev.ru> |
|---|---|
| date | Thu, 12 Apr 2012 00:00:00 +0400 |
| parents | bf8b55a5ac89 |
| children | 4dcaf40cc702 |
comparison
equal
deleted
inserted
replaced
| 669:3f5d0be5ee74 | 670:ad45b044f1e5 |
|---|---|
| 487 int nid; | 487 int nid; |
| 488 EC_KEY *ecdh; | 488 EC_KEY *ecdh; |
| 489 | 489 |
| 490 /* | 490 /* |
| 491 * Elliptic-Curve Diffie-Hellman parameters are either "named curves" | 491 * Elliptic-Curve Diffie-Hellman parameters are either "named curves" |
| 492 * from RFC 4492 section 5.1.1, or explicitely described curves over | 492 * from RFC 4492 section 5.1.1, or explicitly described curves over |
| 493 * binary fields. OpenSSL only supports the "named curves", which provide | 493 * binary fields. OpenSSL only supports the "named curves", which provide |
| 494 * maximum interoperability. | 494 * maximum interoperability. |
| 495 */ | 495 */ |
| 496 | 496 |
| 497 nid = OBJ_sn2nid((const char *) name->data); | 497 nid = OBJ_sn2nid((const char *) name->data); |