[nginx/f16] Resolve CVE-2011-431
Keiran Smith
affix at fedoraproject.org
Thu Nov 17 17:17:05 UTC 2011
commit cc11b87fcb25a15577c2aa28f646fa6dba6702b0
Author: Affix <affix at affix.me>
Date: Thu Nov 17 17:16:52 2011 +0000
Resolve CVE-2011-431
.gitignore | 1 +
nginx.spec | 6 +++++-
sources | 2 +-
3 files changed, 7 insertions(+), 2 deletions(-)
---
diff --git a/.gitignore b/.gitignore
index 341d66d..c98d633 100644
--- a/.gitignore
+++ b/.gitignore
@@ -8,3 +8,4 @@ x86_64/
/nginx-1.0.0.tar.gz
/nginx-1.0.5.tar.gz
/nginx-1.0.8.tar.gz
+/nginx-1.0.10.tar.gz
diff --git a/nginx.spec b/nginx.spec
index 4e93baa..f29e058 100644
--- a/nginx.spec
+++ b/nginx.spec
@@ -8,7 +8,7 @@
%define nginx_webroot %{nginx_datadir}/html
Name: nginx
-Version: 1.0.8
+Version: 1.0.10
Release: 1%{?dist}
Summary: Robust, small and high performance HTTP and reverse proxy server
Group: System Environment/Daemons
@@ -191,6 +191,10 @@ fi
%changelog
+* Thu Nov 17 2011 Keiran "Affix" Smith <fedora at affix.me> - 1.0.10-1
+- Bugfix: a segmentation fault might occur in a worker process if resolver got a big DNS response. Thanks to Ben Hawkes.
+- Bugfix: in cache key calculation if internal MD5 implementation wasused; the bug had appeared in 1.0.4.
+- Bugfix: the module ngx_http_mp4_module sent incorrect "Content-Length" response header line if the "start" argument was used. Thanks to Piotr Sikora.
* Thu Oct 27 2011 Keiran "Affix" Smith <fedora at affix.me> - 1.0.8-1
- Update to new 1.0.8 stable release
diff --git a/sources b/sources
index 8fa4de5..50a2f05 100644
--- a/sources
+++ b/sources
@@ -1 +1 @@
-1049e5fc6e80339f6ba8668fadfb75f9 nginx-1.0.8.tar.gz
+930b297b00fa1018fb0a1dd3e6b7e17e nginx-1.0.10.tar.gz
More information about the scm-commits
mailing list