[MacPorts] #50454: nginx @1.9.9_0: update to 1.9.10
MacPorts
noreply at macports.org
Wed Jan 27 03:52:38 PST 2016
#50454: nginx @1.9.9_0: update to 1.9.10
---------------------------------+--------------------------------
Reporter: mschamschula@… | Owner: macports-tickets@…
Type: update | Status: new
Priority: Normal | Milestone:
Component: ports | Version: 2.3.4
Keywords: haspatch maintainer | Port: nginx
---------------------------------+--------------------------------
nginx has been updated to version 1.9.10. New this version:
* Security: invalid pointer dereference might occur during DNS server
response processing if the "resolver" directive was used, allowing an
attacker who is able to forge UDP packets from the DNS server to cause
segmentation fault in a worker process (CVE-2016-0742).
* Security: use-after-free condition might occur during CNAME response
processing if the "resolver" directive was used, allowing an attacker who
is able to trigger name resolution to cause segmentation fault in a worker
process, or might have potential other impact (CVE-2016-0746).
* Security: CNAME resolution was insufficiently limited if the "resolver"
directive was used, allowing an attacker who is able to trigger arbitrary
name resolution to cause excessive resource consumption in worker
processes (CVE-2016-0747).
* Feature: the "auto" parameter of the "worker_cpu_affinity" directive.
* Bugfix: the "proxy_protocol" parameter of the "listen" directive did not
work with IPv6 listen sockets.
* Bugfix: connections to upstream servers might be cached incorrectly when
using the "keepalive" directive.
* Bugfix: proxying used the HTTP method of the original request after an
"X-Accel-Redirect" redirection.
--
Ticket URL: <https://trac.macports.org/ticket/50454>
MacPorts <https://www.macports.org/>
Ports system for OS X
More information about the macports-tickets
mailing list