Knowledge eXchange

A site dedicated to Exchanging Knowledge (reviews, q&a, help, support)

Changes with NginX 1.4.7 – High

by · May 7, 2014

Changes with NginX 1.4.7

Below are the list of changes from the 1.4.6 release of NginX to version 1.4.7 This is provided as reference only and was obtained from: http://nginx.org/en/CHANGES. This update addresses a bug fix and a security issue. Because of the security issue we rate this update of high priority.

Changes with nginx 1.4.7                                         18 Mar 2014

    *) Security: a heap memory buffer overflow might occur in a worker
       process while handling a specially crafted request by
       ngx_http_spdy_module, potentially resulting in arbitrary code
       execution (CVE-2014-0133).
       Thanks to Lucas Molas, researcher at Programa STIC, Fundación Dr.
       Manuel Sadosky, Buenos Aires, Argentina.

    *) Bugfix: in the "fastcgi_next_upstream" directive.
       Thanks to Lucas Molas.

 

Enhanced by Zemanta

Tags:

You may also like...

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.