47c4fba86c48d7b8556c7f4d6d3773a25ab162fe - net/nginx-mbedtls

commit	47c4fba86c48d7b8556c7f4d6d3773a25ab162fe	[log] [download]
author	nginx <nginx@nginx.org>	Tue Mar 18 16:43:46 2014 +0000
committer	Jon Kolb <kolbyjack@gmail.com>	Tue Mar 18 16:43:46 2014 +0000
tree	f45083ebcdfde566c3775457bfc35053af34b759
parent	483f0cd547195b96550760fc5ab510eb67ec0160 [diff]

Changes with nginx 1.4.7                                         18 Mar 2014

    *) Security: a heap memory buffer overflow might occur in a worker
       process while handling a specially crafted request by
       ngx_http_spdy_module, potentially resulting in arbitrary code
       execution (CVE-2014-0133).
       Thanks to Lucas Molas, researcher at Programa STIC, Fundación Dr.
       Manuel Sadosky, Buenos Aires, Argentina.

    *) Bugfix: in the "fastcgi_next_upstream" directive.
       Thanks to Lucas Molas.

CHANGES[diff]
CHANGES.ru[diff]
src/core/nginx.h[diff]
src/http/modules/ngx_http_fastcgi_module.c[diff]
src/http/ngx_http_spdy.c[diff]

5 files changed

tree: f45083ebcdfde566c3775457bfc35053af34b759

CHANGES
CHANGES.ru
LICENSE
README
auto/
conf/
configure
contrib/
html/
man/
src/