nginx [nginx-announce] nginx-1.4.7 (no replies)

M

Maxim Dounin

Guest
Changes with nginx 1.4.7 18 Mar 2014

*) Security: a heap memory buffer overflow might occur in a worker
process while handling a specially crafted request by
ngx_http_spdy_module, potentially resulting in arbitrary code
execution (CVE-2014-0133).
Thanks to Lucas Molas, researcher at Programa STIC, Fundación Dr.
Manuel Sadosky, Buenos Aires, Argentina.

*) Bugfix: in the "fastcgi_next_upstream" directive.
Thanks to Lucas Molas.


--
Maxim Dounin
http://nginx.org/en/donation.html

_______________________________________________
nginx-announce mailing list
[email protected]
http://mailman.nginx.org/mailman/listinfo/nginx-announce

Continue reading...
 

Similar threads

M
Replies
0
Views
450
Maxim Dounin
M
M
Replies
0
Views
480
Maxim Dounin
M
M
Replies
0
Views
533
Maxim Dounin
M
M
Replies
0
Views
430
Maxim Dounin
M
M
Replies
0
Views
380
Maxim Dounin
M
Top