Author: Lev Lazinskiy
Author Date: 2014-12-06 03:25:50 UTC

Import patches-applied version 1.1.19-1ubuntu0.7 to applied/ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: 2062c3bd11ed2818d127241f21c802ae7b7c3423
Unapplied parent: 0fb2d696ed64edc31b8658440c4f9cda1638ca6f

New changelog entries:
  * SECURITY UPDATE: incorrect cached SSL session reuse (LP: #1370478)
    - debian/patches/CVE-2014-3616.patch: Use a random value for session id
      context, since there is no support for shared TLS Session Tickets in
      this version in src/event/ngx_event_openssl.c.
    - CVE-2014-3616

Author: Lev Lazinskiy
Author Date: 2014-12-06 03:25:50 UTC

Import patches-unapplied version 1.1.19-1ubuntu0.7 to ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: 8c869281fd52aa21da186fc3914629c2403189b1

New changelog entries:
  * SECURITY UPDATE: incorrect cached SSL session reuse (LP: #1370478)
    - debian/patches/CVE-2014-3616.patch: Use a random value for session id
      context, since there is no support for shared TLS Session Tickets in
      this version in src/event/ngx_event_openssl.c.
    - CVE-2014-3616

Author: Thomas Ward
Author Date: 2014-10-22 13:43:35 UTC

Import patches-unapplied version 1.6.2-1ubuntu1.1 to ubuntu/utopic-proposed

Imported using git-ubuntu import.

Changelog parent: defc4329ff9771657cbac3f108007e3874e04c92

New changelog entries:
  * debian/conf/sites-available/default: Remove SSLv3 from the ssl_protocols
    line in the default config example, due to POODLE vulnerability.

Author: Thomas Ward
Author Date: 2014-10-22 13:43:35 UTC

Import patches-applied version 1.6.2-1ubuntu1.1 to applied/ubuntu/utopic-proposed

Imported using git-ubuntu import.

Changelog parent: 74c75af90eca57bbf0abd0c963d8651194c14665
Unapplied parent: 45fea9ea6d32e7fd61fd4c3f8c3da6270e9febb5

New changelog entries:
  * debian/conf/sites-available/default: Remove SSLv3 from the ssl_protocols
    line in the default config example, due to POODLE vulnerability.

Author: Thomas Ward
Author Date: 2014-10-22 13:43:35 UTC

Import patches-applied version 1.6.2-1ubuntu1.1 to applied/ubuntu/utopic-proposed

Imported using git-ubuntu import.

Changelog parent: 74c75af90eca57bbf0abd0c963d8651194c14665
Unapplied parent: 45fea9ea6d32e7fd61fd4c3f8c3da6270e9febb5

New changelog entries:
  * debian/conf/sites-available/default: Remove SSLv3 from the ssl_protocols
    line in the default config example, due to POODLE vulnerability.

Author: Thomas Ward
Author Date: 2014-10-22 13:43:35 UTC

Import patches-applied version 1.6.2-1ubuntu1.1 to applied/ubuntu/utopic-proposed

Imported using git-ubuntu import.

Changelog parent: 74c75af90eca57bbf0abd0c963d8651194c14665
Unapplied parent: 45fea9ea6d32e7fd61fd4c3f8c3da6270e9febb5

New changelog entries:
  * debian/conf/sites-available/default: Remove SSLv3 from the ssl_protocols
    line in the default config example, due to POODLE vulnerability.

Author: Thomas Ward
Author Date: 2014-10-22 13:43:35 UTC

Import patches-unapplied version 1.6.2-1ubuntu1.1 to ubuntu/utopic-proposed

Imported using git-ubuntu import.

Changelog parent: defc4329ff9771657cbac3f108007e3874e04c92

New changelog entries:
  * debian/conf/sites-available/default: Remove SSLv3 from the ssl_protocols
    line in the default config example, due to POODLE vulnerability.

Author: Thomas Ward
Author Date: 2014-10-22 13:43:35 UTC

Import patches-unapplied version 1.6.2-1ubuntu1.1 to ubuntu/utopic-proposed

Imported using git-ubuntu import.

Changelog parent: defc4329ff9771657cbac3f108007e3874e04c92

New changelog entries:
  * debian/conf/sites-available/default: Remove SSLv3 from the ssl_protocols
    line in the default config example, due to POODLE vulnerability.

Author: Thomas Ward
Author Date: 2014-03-19 01:17:14 UTC

Import patches-unapplied version 1.4.1-3ubuntu1.3 to ubuntu/saucy-security

Imported using git-ubuntu import.

Changelog parent: 4ae708bb6141416d5d0bb901c9f3788da582626f

New changelog entries:
  * SECURITY UPDATE: SPDY Heap Buffer Overflow Vulnerabilty (LP: #1294280)
    - debian/patches/cve-2014-0133.patch: modify src/http/ngx_http_spdy.c to
      fix a heap buffer overflow vulnerability in the SPDY module by using
      a specially crafted request.
    - CVE-2014-0133

Author: Thomas Ward
Author Date: 2014-03-19 01:17:14 UTC

Import patches-applied version 1.4.1-3ubuntu1.3 to applied/ubuntu/saucy-security

Imported using git-ubuntu import.

Changelog parent: 1fc84e5118010f4d129e545330bc3b4a6d9f4487
Unapplied parent: 6b8ad37b49fd0194d7278e75e0d5504800864594

New changelog entries:
  * SECURITY UPDATE: SPDY Heap Buffer Overflow Vulnerabilty (LP: #1294280)
    - debian/patches/cve-2014-0133.patch: modify src/http/ngx_http_spdy.c to
      fix a heap buffer overflow vulnerability in the SPDY module by using
      a specially crafted request.
    - CVE-2014-0133

Author: Thomas Ward
Author Date: 2014-03-19 01:17:14 UTC

Import patches-applied version 1.4.1-3ubuntu1.3 to applied/ubuntu/saucy-security

Imported using git-ubuntu import.

Changelog parent: 1fc84e5118010f4d129e545330bc3b4a6d9f4487
Unapplied parent: 6b8ad37b49fd0194d7278e75e0d5504800864594

New changelog entries:
  * SECURITY UPDATE: SPDY Heap Buffer Overflow Vulnerabilty (LP: #1294280)
    - debian/patches/cve-2014-0133.patch: modify src/http/ngx_http_spdy.c to
      fix a heap buffer overflow vulnerability in the SPDY module by using
      a specially crafted request.
    - CVE-2014-0133

Author: Thomas Ward
Author Date: 2014-03-19 01:17:14 UTC

Import patches-applied version 1.4.1-3ubuntu1.3 to applied/ubuntu/saucy-security

Imported using git-ubuntu import.

Changelog parent: 1fc84e5118010f4d129e545330bc3b4a6d9f4487
Unapplied parent: 6b8ad37b49fd0194d7278e75e0d5504800864594

New changelog entries:
  * SECURITY UPDATE: SPDY Heap Buffer Overflow Vulnerabilty (LP: #1294280)
    - debian/patches/cve-2014-0133.patch: modify src/http/ngx_http_spdy.c to
      fix a heap buffer overflow vulnerability in the SPDY module by using
      a specially crafted request.
    - CVE-2014-0133

Author: Thomas Ward
Author Date: 2014-03-19 01:17:14 UTC

Import patches-unapplied version 1.4.1-3ubuntu1.3 to ubuntu/saucy-security

Imported using git-ubuntu import.

Changelog parent: 4ae708bb6141416d5d0bb901c9f3788da582626f

New changelog entries:
  * SECURITY UPDATE: SPDY Heap Buffer Overflow Vulnerabilty (LP: #1294280)
    - debian/patches/cve-2014-0133.patch: modify src/http/ngx_http_spdy.c to
      fix a heap buffer overflow vulnerability in the SPDY module by using
      a specially crafted request.
    - CVE-2014-0133

Author: Thomas Ward
Author Date: 2014-03-19 01:17:14 UTC

Import patches-unapplied version 1.4.1-3ubuntu1.3 to ubuntu/saucy-security

Imported using git-ubuntu import.

Changelog parent: 4ae708bb6141416d5d0bb901c9f3788da582626f

New changelog entries:
  * SECURITY UPDATE: SPDY Heap Buffer Overflow Vulnerabilty (LP: #1294280)
    - debian/patches/cve-2014-0133.patch: modify src/http/ngx_http_spdy.c to
      fix a heap buffer overflow vulnerability in the SPDY module by using
      a specially crafted request.
    - CVE-2014-0133

Author: Thomas Ward
Author Date: 2014-03-10 22:23:36 UTC

Import patches-unapplied version 1.4.6-1ubuntu3 to ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: dee08f5931ba689b998ad9491418a56a40f9e404

New changelog entries:
  * Add new binary package for main, nginx-core, which contains only
    source-tarball-included modules and no third-party modules.
  * Changes to debian/ directory:
    - control:
      + Add entry for nginx-core and nginx-core-dbg.
    - rules:
      + Add nginx-core flavor to the build rules.
    - nginx-core.*: Add new packaging files for nginx-core based on
      the packaging files for nginx-full.
  * The above changes satisfy the requirements for main (LP: #1262710)

Author: Thomas Ward
Author Date: 2014-03-10 22:23:36 UTC

Import patches-applied version 1.4.6-1ubuntu3 to applied/ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: 75dee4022970793c4d2d135fe20b293265e85c11
Unapplied parent: 269314baa04a7ad85e3295c2db0a10a327bcef31

New changelog entries:
  * Add new binary package for main, nginx-core, which contains only
    source-tarball-included modules and no third-party modules.
  * Changes to debian/ directory:
    - control:
      + Add entry for nginx-core and nginx-core-dbg.
    - rules:
      + Add nginx-core flavor to the build rules.
    - nginx-core.*: Add new packaging files for nginx-core based on
      the packaging files for nginx-full.
  * The above changes satisfy the requirements for main (LP: #1262710)

Author: Thomas Ward
Author Date: 2014-02-10 02:14:14 UTC

Import patches-unapplied version 1.4.1-3ubuntu1.2 to ubuntu/saucy-proposed

Imported using git-ubuntu import.

Changelog parent: 86eaf7be64c9d6d9846d6b7d1bf75e361cafc854

New changelog entries:
  * Apply upstream changes to fix a segmentation fault in the third-party
    ngx_auth_pam module in nginx-full and nginx-extras. (LP: #1264674)

Author: Thomas Ward
Author Date: 2014-02-10 02:14:14 UTC

Import patches-applied version 1.4.1-3ubuntu1.2 to applied/ubuntu/saucy-proposed

Imported using git-ubuntu import.

Changelog parent: f23719d136bf174203e4f0b9fae87f4e6cf4f838
Unapplied parent: 462e02a25a2f1afbe82cd4d212a5ea383d1c4215

New changelog entries:
  * Apply upstream changes to fix a segmentation fault in the third-party
    ngx_auth_pam module in nginx-full and nginx-extras. (LP: #1264674)

Author: Thomas Ward
Author Date: 2013-11-21 18:19:37 UTC

Import patches-applied version 1.2.1-2.2ubuntu0.2 to applied/ubuntu/quantal-security

Imported using git-ubuntu import.

Changelog parent: c3a8e558d3bb723301eb5f7daaf50549b0b2cffb
Unapplied parent: b76111dddae965d74362fd975c7d46afcfbaa9a3

New changelog entries:
  * SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
    - debian/patches/cve-2013-4547.patch: modify src/http/ngx_http_parse.c
      to account for a space character, fixing an issue which could result in
      security restrictions being bypassed
    - CVE-2013-4547

Author: Thomas Ward
Author Date: 2013-11-21 18:24:46 UTC

Import patches-applied version 1.2.6-1ubuntu3.3 to applied/ubuntu/raring-security

Imported using git-ubuntu import.

Changelog parent: f413975f8cca251ceddb5ff3ab8de93410079aff
Unapplied parent: 2a6df18526435f83d40517c208641756e820ff81

New changelog entries:
  * SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
    - debian/patches/cve-2013-4547.patch: modify src/http/ngx_http_parse.c
      to account for a space character, fixing an issue which could result in
      security restrictions being bypassed
    - CVE-2013-4547

Author: Thomas Ward
Author Date: 2013-11-21 18:24:46 UTC

Import patches-applied version 1.2.6-1ubuntu3.3 to applied/ubuntu/raring-security

Imported using git-ubuntu import.

Changelog parent: f413975f8cca251ceddb5ff3ab8de93410079aff
Unapplied parent: 2a6df18526435f83d40517c208641756e820ff81

New changelog entries:
  * SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
    - debian/patches/cve-2013-4547.patch: modify src/http/ngx_http_parse.c
      to account for a space character, fixing an issue which could result in
      security restrictions being bypassed
    - CVE-2013-4547

Author: Thomas Ward
Author Date: 2013-11-21 18:24:46 UTC

Import patches-applied version 1.2.6-1ubuntu3.3 to applied/ubuntu/raring-security

Imported using git-ubuntu import.

Changelog parent: f413975f8cca251ceddb5ff3ab8de93410079aff
Unapplied parent: 2a6df18526435f83d40517c208641756e820ff81

New changelog entries:
  * SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
    - debian/patches/cve-2013-4547.patch: modify src/http/ngx_http_parse.c
      to account for a space character, fixing an issue which could result in
      security restrictions being bypassed
    - CVE-2013-4547

Author: Thomas Ward
Author Date: 2013-11-21 18:19:37 UTC

Import patches-applied version 1.2.1-2.2ubuntu0.2 to applied/ubuntu/quantal-security

Imported using git-ubuntu import.

Changelog parent: c3a8e558d3bb723301eb5f7daaf50549b0b2cffb
Unapplied parent: b76111dddae965d74362fd975c7d46afcfbaa9a3

New changelog entries:
  * SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
    - debian/patches/cve-2013-4547.patch: modify src/http/ngx_http_parse.c
      to account for a space character, fixing an issue which could result in
      security restrictions being bypassed
    - CVE-2013-4547

Author: Thomas Ward
Author Date: 2013-11-21 18:19:37 UTC

Import patches-applied version 1.2.1-2.2ubuntu0.2 to applied/ubuntu/quantal-security

Imported using git-ubuntu import.

Changelog parent: c3a8e558d3bb723301eb5f7daaf50549b0b2cffb
Unapplied parent: b76111dddae965d74362fd975c7d46afcfbaa9a3

New changelog entries:
  * SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
    - debian/patches/cve-2013-4547.patch: modify src/http/ngx_http_parse.c
      to account for a space character, fixing an issue which could result in
      security restrictions being bypassed
    - CVE-2013-4547

Author: Thomas Ward
Author Date: 2013-11-21 18:24:46 UTC

Import patches-unapplied version 1.2.6-1ubuntu3.3 to ubuntu/raring-security

Imported using git-ubuntu import.

Changelog parent: 5d8995c2a81ab15bef50066362fa323be552c874

New changelog entries:
  * SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
    - debian/patches/cve-2013-4547.patch: modify src/http/ngx_http_parse.c
      to account for a space character, fixing an issue which could result in
      security restrictions being bypassed
    - CVE-2013-4547

Author: Thomas Ward
Author Date: 2013-11-21 18:24:46 UTC

Import patches-unapplied version 1.2.6-1ubuntu3.3 to ubuntu/raring-security

Imported using git-ubuntu import.

Changelog parent: 5d8995c2a81ab15bef50066362fa323be552c874

New changelog entries:
  * SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
    - debian/patches/cve-2013-4547.patch: modify src/http/ngx_http_parse.c
      to account for a space character, fixing an issue which could result in
      security restrictions being bypassed
    - CVE-2013-4547

Author: Thomas Ward
Author Date: 2013-11-21 18:24:46 UTC

Import patches-unapplied version 1.2.6-1ubuntu3.3 to ubuntu/raring-security

Imported using git-ubuntu import.

Changelog parent: 5d8995c2a81ab15bef50066362fa323be552c874

New changelog entries:
  * SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
    - debian/patches/cve-2013-4547.patch: modify src/http/ngx_http_parse.c
      to account for a space character, fixing an issue which could result in
      security restrictions being bypassed
    - CVE-2013-4547

Author: Thomas Ward
Author Date: 2013-11-21 18:19:37 UTC

Import patches-unapplied version 1.2.1-2.2ubuntu0.2 to ubuntu/quantal-security

Imported using git-ubuntu import.

Changelog parent: b76ad5c6769c8fbc24ced7f388fc0d8dc146613f

New changelog entries:
  * SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
    - debian/patches/cve-2013-4547.patch: modify src/http/ngx_http_parse.c
      to account for a space character, fixing an issue which could result in
      security restrictions being bypassed
    - CVE-2013-4547

Author: Thomas Ward
Author Date: 2013-11-21 18:19:37 UTC

Import patches-unapplied version 1.2.1-2.2ubuntu0.2 to ubuntu/quantal-security

Imported using git-ubuntu import.

Changelog parent: b76ad5c6769c8fbc24ced7f388fc0d8dc146613f

New changelog entries:
  * SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
    - debian/patches/cve-2013-4547.patch: modify src/http/ngx_http_parse.c
      to account for a space character, fixing an issue which could result in
      security restrictions being bypassed
    - CVE-2013-4547

Author: Thomas Ward
Author Date: 2013-11-21 18:19:37 UTC

Import patches-unapplied version 1.2.1-2.2ubuntu0.2 to ubuntu/quantal-security

Imported using git-ubuntu import.

Changelog parent: b76ad5c6769c8fbc24ced7f388fc0d8dc146613f

New changelog entries:
  * SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
    - debian/patches/cve-2013-4547.patch: modify src/http/ngx_http_parse.c
      to account for a space character, fixing an issue which could result in
      security restrictions being bypassed
    - CVE-2013-4547

Author: Colin Watson
Author Date: 2013-06-20 14:08:44 UTC

Import patches-unapplied version 1.4.1-3ubuntu1 to ubuntu/saucy-proposed

Imported using git-ubuntu import.

Changelog parent: d8e3e718625fafa36d09cd54883ce5bbdb91880c

New changelog entries:
  * Resynchronise with Debian. Remaining changes:
    - debian/patches/ubuntu-branding.patch:
      + Add Ubuntu branding to server_tokens.

Author: Colin Watson
Author Date: 2013-06-20 14:08:44 UTC

Import patches-applied version 1.4.1-3ubuntu1 to applied/ubuntu/saucy-proposed

Imported using git-ubuntu import.

Changelog parent: 9930319861c2f1764bcda9658653998237b447c7
Unapplied parent: 9d97ffab0b79d395f918fb33844c0da8829e8f97

New changelog entries:
  * Resynchronise with Debian. Remaining changes:
    - debian/patches/ubuntu-branding.patch:
      + Add Ubuntu branding to server_tokens.

Author: Adam Conrad
Author Date: 2013-05-09 17:50:52 UTC

Import patches-unapplied version 1.2.6-1ubuntu3.1 to ubuntu/raring-proposed

Imported using git-ubuntu import.

Changelog parent: 34a69e841dc2388a4fa4c16af25992855c52ba51

New changelog entries:
  * debian/patches/ubuntu-branding.patch: Move Ubuntu branding from
    the numerical version string to the long version (LP: #1174158)

Author: Adam Conrad
Author Date: 2013-05-09 17:50:52 UTC

Import patches-applied version 1.2.6-1ubuntu3.1 to applied/ubuntu/raring-proposed

Imported using git-ubuntu import.

Changelog parent: 4914af8df4b2a1041f7625a202dc34e2ecb5eb8c
Unapplied parent: f75f41869e4543a9f72c34ef579f00682520acfa

New changelog entries:
  * debian/patches/ubuntu-branding.patch: Move Ubuntu branding from
    the numerical version string to the long version (LP: #1174158)

Author: Chuck Short
Author Date: 2013-04-09 15:23:26 UTC

Import patches-applied version 1.2.6-1ubuntu3 to applied/ubuntu/raring-proposed

Imported using git-ubuntu import.

Changelog parent: 746ad6a2f01cd97944ad07cb153143ef558e577c
Unapplied parent: bc26d865a40c90e01aef32ee04cd02f8462abf56

New changelog entries:
  * debian/patches/ubuntu-branding.patch: Add ubuntu branding
    to server_tokens.

Author: Chuck Short
Author Date: 2013-04-09 15:23:26 UTC

Import patches-unapplied version 1.2.6-1ubuntu3 to ubuntu/raring-proposed

Imported using git-ubuntu import.

Changelog parent: 6716a47e0f9f81b1dad56f9b7460a03c8ec3c04c

New changelog entries:
  * debian/patches/ubuntu-branding.patch: Add ubuntu branding
    to server_tokens.

Author: Cyril Lavier
Author Date: 2013-02-13 13:32:44 UTC

Import patches-unapplied version 0.7.67-3+squeeze3 to debian/squeeze

Imported using git-ubuntu import.

Changelog parent: 155863638bd4902bf396470c6d677778d032d2d8

New changelog entries:
  * debian/patches/CVE-2012-4929.diff:
    + Fixes the vulnerability to CRIME SSL attack. See: CVE-2012-4929 for more
      details.(Closes: #700426).

Author: Cyril Lavier
Author Date: 2013-02-13 13:32:44 UTC

Import patches-applied version 0.7.67-3+squeeze3 to applied/debian/squeeze

Imported using git-ubuntu import.

Changelog parent: 16646dc8d58da13d99377206ca9bab4ceee588f4
Unapplied parent: 678faad9cc9fef18c3cb103da93c1277112d1d26

New changelog entries:
  * debian/patches/CVE-2012-4929.diff:
    + Fixes the vulnerability to CRIME SSL attack. See: CVE-2012-4929 for more
      details.(Closes: #700426).

Author: gregor herrmann
Author Date: 2012-08-04 16:13:10 UTC

Import patches-unapplied version 1.2.1-2.2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 3885b9d8f2140abe48efe9a77c8595f3f1c14c10

New changelog entries:
  * Non-maintainer upload.
  * Fix "removes files that were installed by another package":
    don't remove directories that are owned by (and removed from) nginx-common
    from nginx-extras.postrm. This seems to have been the idea in commit e30a854
    ("Moved configuration purging to nginx-common.") except that it was added
    in nginx-common.postrm without being removed in nginx-extras.postrm.
    Remove nginx-extras.postrm since it's empty after this change.
    (Closes: #681758)

Author: gregor herrmann
Author Date: 2012-08-04 16:13:10 UTC

Import patches-applied version 1.2.1-2.2 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 2d819012400847ecda3a0a18428c748273fac1be
Unapplied parent: e8b124549266041f587a27456f39962858b83520

New changelog entries:
  * Non-maintainer upload.
  * Fix "removes files that were installed by another package":
    don't remove directories that are owned by (and removed from) nginx-common
    from nginx-extras.postrm. This seems to have been the idea in commit e30a854
    ("Moved configuration purging to nginx-common.") except that it was added
    in nginx-common.postrm without being removed in nginx-extras.postrm.
    Remove nginx-extras.postrm since it's empty after this change.
    (Closes: #681758)

Author: Thomas Ward
Author Date: 2012-06-12 16:37:49 UTC

Import patches-unapplied version 0.7.65-1ubuntu2.3 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: 2949417b1975445ea732376272dc9da8a356ad70

New changelog entries:
  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-06-12 16:52:27 UTC

Import patches-unapplied version 1.0.5-1ubuntu0.1 to ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: cae773ba86503e5c2fd88b0ba0cb294810444f99

New changelog entries:
  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-06-12 16:37:49 UTC

Import patches-unapplied version 0.7.65-1ubuntu2.3 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: 2949417b1975445ea732376272dc9da8a356ad70

New changelog entries:
  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-06-12 16:37:49 UTC

Import patches-unapplied version 0.7.65-1ubuntu2.3 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: 2949417b1975445ea732376272dc9da8a356ad70

New changelog entries:
  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-05-20 17:05:42 UTC

Import patches-applied version 0.8.54-4ubuntu0.1 to applied/ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: 82f71301b774ac11425dc9db1c88f72cc1604cd8
Unapplied parent: c8a8f2fa18b1db20b81df0e866d8d061879a96aa

New changelog entries:
  * Security update (closes LP: #956150):
    * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
    * Patch to fix 'Heap-based buffer overflow in compression-pointer
      processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-06-12 16:52:27 UTC

Import patches-applied version 1.0.5-1ubuntu0.1 to applied/ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: dd397de45fa1c7c482e5b353719ad643439d7e26
Unapplied parent: aa82e5d1c307636098781ac09cfe7d7a67b10b75

New changelog entries:
  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-06-12 16:52:27 UTC

Import patches-applied version 1.0.5-1ubuntu0.1 to applied/ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: dd397de45fa1c7c482e5b353719ad643439d7e26
Unapplied parent: aa82e5d1c307636098781ac09cfe7d7a67b10b75

New changelog entries:
  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-06-12 16:52:27 UTC

Import patches-applied version 1.0.5-1ubuntu0.1 to applied/ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: dd397de45fa1c7c482e5b353719ad643439d7e26
Unapplied parent: aa82e5d1c307636098781ac09cfe7d7a67b10b75

New changelog entries:
  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-06-12 16:37:49 UTC

Import patches-applied version 0.7.65-1ubuntu2.3 to applied/ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: ae9aa5c1004734fcb0c577300917066f7732f2e2
Unapplied parent: 96e2ea03d2e6333e8118267bccc8ef30fbc6c2bf

New changelog entries:
  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-06-12 16:37:49 UTC

Import patches-applied version 0.7.65-1ubuntu2.3 to applied/ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: ae9aa5c1004734fcb0c577300917066f7732f2e2
Unapplied parent: 96e2ea03d2e6333e8118267bccc8ef30fbc6c2bf

New changelog entries:
  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-06-12 16:37:49 UTC

Import patches-applied version 0.7.65-1ubuntu2.3 to applied/ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: ae9aa5c1004734fcb0c577300917066f7732f2e2
Unapplied parent: 96e2ea03d2e6333e8118267bccc8ef30fbc6c2bf

New changelog entries:
  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-06-12 16:52:27 UTC

Import patches-unapplied version 1.0.5-1ubuntu0.1 to ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: cae773ba86503e5c2fd88b0ba0cb294810444f99

New changelog entries:
  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-05-20 17:05:42 UTC

Import patches-applied version 0.8.54-4ubuntu0.1 to applied/ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: 82f71301b774ac11425dc9db1c88f72cc1604cd8
Unapplied parent: c8a8f2fa18b1db20b81df0e866d8d061879a96aa

New changelog entries:
  * Security update (closes LP: #956150):
    * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
    * Patch to fix 'Heap-based buffer overflow in compression-pointer
      processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-05-20 17:05:42 UTC

Import patches-unapplied version 0.8.54-4ubuntu0.1 to ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: 277ba9d948b0e17f36c2c08d81fd4a26efac1ece

New changelog entries:
  * Security update (closes LP: #956150):
    * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
    * Patch to fix 'Heap-based buffer overflow in compression-pointer
      processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-05-20 17:05:42 UTC

Import patches-unapplied version 0.8.54-4ubuntu0.1 to ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: 277ba9d948b0e17f36c2c08d81fd4a26efac1ece

New changelog entries:
  * Security update (closes LP: #956150):
    * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
    * Patch to fix 'Heap-based buffer overflow in compression-pointer
      processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-05-20 17:05:42 UTC

Import patches-unapplied version 0.8.54-4ubuntu0.1 to ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: 277ba9d948b0e17f36c2c08d81fd4a26efac1ece

New changelog entries:
  * Security update (closes LP: #956150):
    * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
    * Patch to fix 'Heap-based buffer overflow in compression-pointer
      processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-06-12 16:52:27 UTC

Import patches-unapplied version 1.0.5-1ubuntu0.1 to ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: cae773ba86503e5c2fd88b0ba0cb294810444f99

New changelog entries:
  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-05-20 17:05:42 UTC

Import patches-applied version 0.8.54-4ubuntu0.1 to applied/ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: 82f71301b774ac11425dc9db1c88f72cc1604cd8
Unapplied parent: c8a8f2fa18b1db20b81df0e866d8d061879a96aa

New changelog entries:
  * Security update (closes LP: #956150):
    * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
    * Patch to fix 'Heap-based buffer overflow in compression-pointer
      processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Cyril Lavier
Author Date: 2012-04-13 11:28:59 UTC

Import patches-applied version 1.1.19-1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: a01b5ed9e00a239cd504a255734f6572f9981c37
Unapplied parent: 632e7332043ff2dc7f9ac05ce2a9731eac5892ba

New changelog entries:
  [Cyril Lavier]
  * New upstream release.
    + Fixed a buffer overflow in the ngx_http_mp4_module. See: CVE-2012-2089
      for more details.
  * debian/copyright:
    + Updated licenses.
  * debian/nginx-extras.postinst, debian/nginx-full.postinst,
    debian/nginx-light.postinst, debian/nginx-naxsi.postinst:
    + Removing the debug markers. (Closes: #667894)
  * debian/control, debian/rules, debian/copyright,
    debian/modules/nginx-dav-ext-module:
    + Added nginx-dav-ext-module in full and extras.
  * debian/modules/naxsi:
    + Updated naxsi to the SVN snapshot (r280) to fix the licence issue with
      OpenSSL.
  [Kartik Mistry]
  * Misc cleanups in debian/control, debian/copyright.

Author: Cyril Lavier
Author Date: 2012-04-13 11:28:59 UTC

Import patches-unapplied version 1.1.19-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 08a75c7272ecf2d29f69f14ea746072d23a15581

New changelog entries:
  [Cyril Lavier]
  * New upstream release.
    + Fixed a buffer overflow in the ngx_http_mp4_module. See: CVE-2012-2089
      for more details.
  * debian/copyright:
    + Updated licenses.
  * debian/nginx-extras.postinst, debian/nginx-full.postinst,
    debian/nginx-light.postinst, debian/nginx-naxsi.postinst:
    + Removing the debug markers. (Closes: #667894)
  * debian/control, debian/rules, debian/copyright,
    debian/modules/nginx-dav-ext-module:
    + Added nginx-dav-ext-module in full and extras.
  * debian/modules/naxsi:
    + Updated naxsi to the SVN snapshot (r280) to fix the licence issue with
      OpenSSL.
  [Kartik Mistry]
  * Misc cleanups in debian/control, debian/copyright.

Author: Mahyuddin Susanto
Author Date: 2012-01-12 07:45:20 UTC

Import patches-applied version 0.7.65-1ubuntu2.2 to applied/ubuntu/lucid-proposed

Imported using git-ubuntu import.

Changelog parent: e0fd0d5dda36ecdca7f54e4b4d2dab55bcb36301
Unapplied parent: a2c3cd2e864adb3a0b1c440122f0bbb6702cd919

New changelog entries:
  * debian/patches/LP-902223.patch: Patch to fix reloading
    IPv6 addresses, patch derived from Debian. (LP: #902223)

Author: Mahyuddin Susanto
Author Date: 2012-01-12 07:45:20 UTC

Import patches-unapplied version 0.7.65-1ubuntu2.2 to ubuntu/lucid-proposed

Imported using git-ubuntu import.

Changelog parent: cf36b23a580cc57814b1b5e9277a53b5b5de0795

New changelog entries:
  * debian/patches/LP-902223.patch: Patch to fix reloading
    IPv6 addresses, patch derived from Debian. (LP: #902223)

Author: Neal Poole
Author Date: 2011-07-13 02:31:10 UTC

Import patches-unapplied version 0.6.35-0ubuntu1.1~hardy1.1 to ubuntu/hardy-backports

Imported using git-ubuntu import.

Changelog parent: 70d6169fa434d1932e90872a054e6c240966d5c8

New changelog entries:
  * SECURITY UPDATE:
      - Merge r3528 from upstream repository to mitigate
        potential null byte vulnerability (LP: #803720)

Author: Neal Poole
Author Date: 2011-07-13 02:31:10 UTC

Import patches-applied version 0.6.35-0ubuntu1.1~hardy1.1 to applied/ubuntu/hardy-backports

Imported using git-ubuntu import.

Changelog parent: 202e4291485bc0034cbc852b04a176e0ecd56156
Unapplied parent: 6a0c567c64b093e63fb85d47b9e34c9a9b2abb90

New changelog entries:
  * SECURITY UPDATE:
      - Merge r3528 from upstream repository to mitigate
        potential null byte vulnerability (LP: #803720)

Author: Kartik Mistry
Author Date: 2011-07-20 04:46:45 UTC

Import patches-applied version 1.0.5-1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 2ba40aa4b205342376e4325bc3b4bdfb9d7ed560
Unapplied parent: d8ae116d8564aed1ff801e04cc513da06ee72ab0

New changelog entries:
  * New upstream release
  * debian/control:
    + nginx Depends on either nginx-full or nginx-light, Thanks to
      Hans van Kranenburg <hans.van.kranenburg@mendix.com> (Closes: #633879)
  * debian/copyright:
    + Updated to latest DEP-5 specification
    + Added some missing copyrights for modules
    + Updated copyright years

Author: Kartik Mistry
Author Date: 2011-07-20 04:46:45 UTC

Import patches-unapplied version 1.0.5-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 753a9b27dd15a1b5db147dd63ac352c62b255e2b

New changelog entries:
  * New upstream release
  * debian/control:
    + nginx Depends on either nginx-full or nginx-light, Thanks to
      Hans van Kranenburg <hans.van.kranenburg@mendix.com> (Closes: #633879)
  * debian/copyright:
    + Updated to latest DEP-5 specification
    + Added some missing copyrights for modules
    + Updated copyright years

Author: Neal Poole
Author Date: 2011-07-13 01:41:00 UTC

Import patches-unapplied version 0.5.33-1ubuntu0.2 to ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: a9b627ea2682e656c5ae86983cea0880a505d01b

New changelog entries:
  * SECURITY UPDATE:
      - Merge r3528 from upstream repository to mitigate
        potential null byte vulnerability (LP: #803720)

Author: Neal Poole
Author Date: 2011-07-13 01:41:00 UTC

Import patches-unapplied version 0.5.33-1ubuntu0.2 to ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: a9b627ea2682e656c5ae86983cea0880a505d01b

New changelog entries:
  * SECURITY UPDATE:
      - Merge r3528 from upstream repository to mitigate
        potential null byte vulnerability (LP: #803720)

Author: Neal Poole
Author Date: 2011-07-13 01:41:00 UTC

Import patches-applied version 0.5.33-1ubuntu0.2 to applied/ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: 0396a1fdb932f7e8271cccf8b476174825ac3a64
Unapplied parent: f7237df706edfe4ae2d3d8233f16f1e1253a0012

New changelog entries:
  * SECURITY UPDATE:
      - Merge r3528 from upstream repository to mitigate
        potential null byte vulnerability (LP: #803720)

Author: Neal Poole
Author Date: 2011-07-13 01:41:00 UTC

Import patches-applied version 0.5.33-1ubuntu0.2 to applied/ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: 0396a1fdb932f7e8271cccf8b476174825ac3a64
Unapplied parent: f7237df706edfe4ae2d3d8233f16f1e1253a0012

New changelog entries:
  * SECURITY UPDATE:
      - Merge r3528 from upstream repository to mitigate
        potential null byte vulnerability (LP: #803720)

Author: Neal Poole
Author Date: 2011-07-13 01:41:00 UTC

Import patches-applied version 0.5.33-1ubuntu0.2 to applied/ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: 0396a1fdb932f7e8271cccf8b476174825ac3a64
Unapplied parent: f7237df706edfe4ae2d3d8233f16f1e1253a0012

New changelog entries:
  * SECURITY UPDATE:
      - Merge r3528 from upstream repository to mitigate
        potential null byte vulnerability (LP: #803720)

Author: Neal Poole
Author Date: 2011-07-13 01:41:00 UTC

Import patches-unapplied version 0.5.33-1ubuntu0.2 to ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: a9b627ea2682e656c5ae86983cea0880a505d01b

New changelog entries:
  * SECURITY UPDATE:
      - Merge r3528 from upstream repository to mitigate
        potential null byte vulnerability (LP: #803720)

Author: Michael Lustfield
Author Date: 2011-03-03 18:09:07 UTC

Import patches-unapplied version 0.8.54-4 to debian/sid

Imported using git-ubuntu import.

Changelog parent: c09e46846599216de9942cfc9123a89b06160c14

New changelog entries:
  [Micheal Lustfield]
  * debian/nginx-{full,light,extras}.default:
    + Added comment about alternative to ULIMIT.
  * debian/nginx-{full,light,extras}.init.d:
    + Added quotes around a test variable. (Closes: #610946, LP: #699736)
  * debian/patches/609343-log-time-iso8601.diff:
    + Added patch to add $time_iso8601 variable to logs. (Closes: #609343)
  * Clean up old logrotate files. (Closes: #608983, Closes: #610289)
    + Added Files:
      - debian/nginx-common.preinst
    + Modified Files:
      - debian/rules
    + Moved debian/nginx-common.logrotate to debian/logrotate.
  * Added common files to nginx-common package. (Closes: #610290)
    + Removed Files:
      - debian/nginx-full.dirs
      - debian/nginx-light.dirs
      - debian/nginx-full.install
      - debian/nginx-light.install
      - debian/nginx-extras.install
      - debian/nginx.*
    + Added Files:
      - debian/nginx-common.default
      - debian/nginx-common.dirs
      - debian/nginx-common.init.d
      - debian/nginx-common.install
      - debian/nginx-common.manpages
      - debian/logrotate
    + Modified Files:
      - debian/nginx-extras.dirs
      - debian/control
      - debian/rules
  * debian/nginx-*.install: (Closes: #609797)
    + Removed NEWS.Debian from nginx-{full,light,extras}.install.
    + Added NEWS.Debian to nginx-common.install.
  * nginx-common.postinst:
    + Enforce /var/log/nginx mode and user:group. (Closes: #610983)
    + Enforce /var/log/nginx/*.log mode and user:group. (Closes: #612832)
  * debian/rules:
    + Added --with-file-aio to nginx-extras. (Closes: #613175)
    + Removed split clients and user id modules from nginx-light.
  * debian/conf/sites-available/default:
    + Fixed a minor typo ( s/Quickstart/QuickStart/ ). (Closes: #613355)
  * debian/conf/mime.types:
    + Changed xml type to application/xhtml+xml. (Closes: #613851)
  * debian/help/docs/fcgiwrap:
    + Removed Ubuntu specific line in docs. (Closes: #614987)
  * debian/conf/sites-available/default:
    + Fixed a pointer to a file. (Closes: #614980)
  [Kartik Mistry]
  * debian/*.lintian-overrides:
    + Add Lintian overrides for nginx man page. We've manpage in nginx-common
      binary

Author: Michael Lustfield
Author Date: 2011-03-03 18:09:07 UTC

Import patches-applied version 0.8.54-4 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 5ebbb894f420273982fabde4d327e61730c7baa4
Unapplied parent: e88e0b84374ccfe98d467a4ebc03c3bf614e9e42

New changelog entries:
  [Micheal Lustfield]
  * debian/nginx-{full,light,extras}.default:
    + Added comment about alternative to ULIMIT.
  * debian/nginx-{full,light,extras}.init.d:
    + Added quotes around a test variable. (Closes: #610946, LP: #699736)
  * debian/patches/609343-log-time-iso8601.diff:
    + Added patch to add $time_iso8601 variable to logs. (Closes: #609343)
  * Clean up old logrotate files. (Closes: #608983, Closes: #610289)
    + Added Files:
      - debian/nginx-common.preinst
    + Modified Files:
      - debian/rules
    + Moved debian/nginx-common.logrotate to debian/logrotate.
  * Added common files to nginx-common package. (Closes: #610290)
    + Removed Files:
      - debian/nginx-full.dirs
      - debian/nginx-light.dirs
      - debian/nginx-full.install
      - debian/nginx-light.install
      - debian/nginx-extras.install
      - debian/nginx.*
    + Added Files:
      - debian/nginx-common.default
      - debian/nginx-common.dirs
      - debian/nginx-common.init.d
      - debian/nginx-common.install
      - debian/nginx-common.manpages
      - debian/logrotate
    + Modified Files:
      - debian/nginx-extras.dirs
      - debian/control
      - debian/rules
  * debian/nginx-*.install: (Closes: #609797)
    + Removed NEWS.Debian from nginx-{full,light,extras}.install.
    + Added NEWS.Debian to nginx-common.install.
  * nginx-common.postinst:
    + Enforce /var/log/nginx mode and user:group. (Closes: #610983)
    + Enforce /var/log/nginx/*.log mode and user:group. (Closes: #612832)
  * debian/rules:
    + Added --with-file-aio to nginx-extras. (Closes: #613175)
    + Removed split clients and user id modules from nginx-light.
  * debian/conf/sites-available/default:
    + Fixed a minor typo ( s/Quickstart/QuickStart/ ). (Closes: #613355)
  * debian/conf/mime.types:
    + Changed xml type to application/xhtml+xml. (Closes: #613851)
  * debian/help/docs/fcgiwrap:
    + Removed Ubuntu specific line in docs. (Closes: #614987)
  * debian/conf/sites-available/default:
    + Fixed a pointer to a file. (Closes: #614980)
  [Kartik Mistry]
  * debian/*.lintian-overrides:
    + Add Lintian overrides for nginx man page. We've manpage in nginx-common
      binary

Author: Mikhail Turov
Author Date: 2010-08-16 20:52:17 UTC

Import patches-unapplied version 0.7.67-3ubuntu1 to ubuntu/maverick

Imported using git-ubuntu import.

Changelog parent: 0ccd21e6d9ad67da78a4b417cc7a391500620b63

New changelog entries:
  * Merge from debian testing. (LP: #616685) Remaining changes:
    - Add a UFW profile set:
      + debian/nginx.ufw.profile: Added.
      + debian/control: nginx: Suggests ufw.
      + debian/dirs: Add 'etc/ufw/applications.d'
      + debian/rules: Add install rule for the nginx UFW profile.
    - Install html files.
      - debian/dirs: Add 'var/www/nginx-default'.
      - debian/nginx.install: Add 'html/* var/www/nginx-default'.

Author: Mikhail Turov
Author Date: 2010-08-16 20:52:17 UTC

Import patches-applied version 0.7.67-3ubuntu1 to applied/ubuntu/maverick

Imported using git-ubuntu import.

Changelog parent: c66d4ca679c07be7e4890df0ebe225a1ec7d3ba6
Unapplied parent: 1c4cccf27d2fc09da80bbef2f78743bfbb3b3e7a

New changelog entries:
  * Merge from debian testing. (LP: #616685) Remaining changes:
    - Add a UFW profile set:
      + debian/nginx.ufw.profile: Added.
      + debian/control: nginx: Suggests ufw.
      + debian/dirs: Add 'etc/ufw/applications.d'
      + debian/rules: Add install rule for the nginx UFW profile.
    - Install html files.
      - debian/dirs: Add 'var/www/nginx-default'.
      - debian/nginx.install: Add 'html/* var/www/nginx-default'.

Author: Mikhail Turov
Author Date: 2010-08-16 20:52:17 UTC

Import patches-applied version 0.7.67-3ubuntu1 to applied/ubuntu/maverick

Imported using git-ubuntu import.

Changelog parent: c66d4ca679c07be7e4890df0ebe225a1ec7d3ba6
Unapplied parent: 1c4cccf27d2fc09da80bbef2f78743bfbb3b3e7a

New changelog entries:
  * Merge from debian testing. (LP: #616685) Remaining changes:
    - Add a UFW profile set:
      + debian/nginx.ufw.profile: Added.
      + debian/control: nginx: Suggests ufw.
      + debian/dirs: Add 'etc/ufw/applications.d'
      + debian/rules: Add install rule for the nginx UFW profile.
    - Install html files.
      - debian/dirs: Add 'var/www/nginx-default'.
      - debian/nginx.install: Add 'html/* var/www/nginx-default'.

Author: Mikhail Turov
Author Date: 2010-08-16 20:52:17 UTC

Import patches-unapplied version 0.7.67-3ubuntu1 to ubuntu/maverick

Imported using git-ubuntu import.

Changelog parent: 0ccd21e6d9ad67da78a4b417cc7a391500620b63

New changelog entries:
  * Merge from debian testing. (LP: #616685) Remaining changes:
    - Add a UFW profile set:
      + debian/nginx.ufw.profile: Added.
      + debian/control: nginx: Suggests ufw.
      + debian/dirs: Add 'etc/ufw/applications.d'
      + debian/rules: Add install rule for the nginx UFW profile.
    - Install html files.
      - debian/dirs: Add 'var/www/nginx-default'.
      - debian/nginx.install: Add 'html/* var/www/nginx-default'.

Author: Daniel Hahler
Author Date: 2010-03-05 00:36:05 UTC

Import patches-applied version 0.7.65-1ubuntu2 to applied/ubuntu/lucid

Imported using git-ubuntu import.

Changelog parent: 706e63321ea5fd8a7111b6a34e3fff61011fae14
Unapplied parent: eb317b05228ffc0af4c7dd2cfe033bd7c3a73eda

New changelog entries:
  * Re-enable http_realip_module (debian/rules).
    Apparently got lost by accident for the 0.7 branch (Closes: #507419)
    LP: #268750

Author: Daniel Hahler
Author Date: 2010-03-05 00:36:05 UTC

Import patches-unapplied version 0.7.65-1ubuntu2 to ubuntu/lucid

Imported using git-ubuntu import.

Changelog parent: bfedc2f85b873b0ce9df88e892ea9dcfaa3d3e79

New changelog entries:
  * Re-enable http_realip_module (debian/rules).
    Apparently got lost by accident for the 0.7 branch (Closes: #507419)
    LP: #268750

Author: Stefan Fritsch
Author Date: 2009-10-24 09:44:57 UTC

Import patches-unapplied version 0.6.32-3+lenny3 to debian/lenny

Imported using git-ubuntu import.

Changelog parent: f755e82b0f6511e969971227e2613e653c5ee8b1

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * Fix remote denial of service (segmentation fault): Null pointer
    dereference if request ends on buffer boundary. Closes: #552035
  * Applying new patch for security issue VU#180065.
  * Fixed security issue "Nginx ngx_http_parse_complex_uri() Buffer
    Underflow Vulnerability" reported by <cmries@andrew.cmu.edu>, see
    VU#180065

Author: Stefan Fritsch
Author Date: 2009-10-24 09:44:57 UTC

Import patches-applied version 0.6.32-3+lenny3 to applied/debian/lenny

Imported using git-ubuntu import.

Changelog parent: a52ab007d443ae7b95e49592b289c5b60d415a2c
Unapplied parent: 7d1e889df363e0cfecfc3af1c47e1bcc3dffafa6

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * Fix remote denial of service (segmentation fault): Null pointer
    dereference if request ends on buffer boundary. Closes: #552035
  * Applying new patch for security issue VU#180065.
  * Fixed security issue "Nginx ngx_http_parse_complex_uri() Buffer
    Underflow Vulnerability" reported by <cmries@andrew.cmu.edu>, see
    VU#180065

Author: Daniel Hahler
Author Date: 2009-10-19 21:22:06 UTC

Import patches-applied version 0.7.62-4ubuntu1 to applied/ubuntu/karmic

Imported using git-ubuntu import.

Changelog parent: f598dfa631693a2dd593226ddcbd55484f7e2c31
Unapplied parent: d5aae2bca2a946a5d32842365ebe266637b53cc2

New changelog entries:
  * Merge from debian unstable (LP: #450874), remaining changes:
    - Install html files.
      - debian/dirs: Add 'var/www/nginx-default'.
      - debian/nginx.install: Add 'html/* var/www/nginx-default'.
    - Added a UFW profile set: (LP: #308695)
      + debian/nginx.ufw.profile: Added.
      + debian/control: nginx: Suggests ufw.
      + debian/dirs: Added 'etc/ufw/applications.d'
      + debian/rules: Added install rule for the nginx UFW profile.
  * Closes: LP: #260005, LP: #440888

Author: Daniel Hahler
Author Date: 2009-10-19 21:22:06 UTC

Import patches-applied version 0.7.62-4ubuntu1 to applied/ubuntu/karmic

Imported using git-ubuntu import.

Changelog parent: f598dfa631693a2dd593226ddcbd55484f7e2c31
Unapplied parent: d5aae2bca2a946a5d32842365ebe266637b53cc2

New changelog entries:
  * Merge from debian unstable (LP: #450874), remaining changes:
    - Install html files.
      - debian/dirs: Add 'var/www/nginx-default'.
      - debian/nginx.install: Add 'html/* var/www/nginx-default'.
    - Added a UFW profile set: (LP: #308695)
      + debian/nginx.ufw.profile: Added.
      + debian/control: nginx: Suggests ufw.
      + debian/dirs: Added 'etc/ufw/applications.d'
      + debian/rules: Added install rule for the nginx UFW profile.
  * Closes: LP: #260005, LP: #440888

Author: Daniel Hahler
Author Date: 2009-10-19 21:22:06 UTC

Import patches-unapplied version 0.7.62-4ubuntu1 to ubuntu/karmic

Imported using git-ubuntu import.

Changelog parent: 5406b0cede6b7b3f62738b0d6fe6f3c74236be4b

New changelog entries:
  * Merge from debian unstable (LP: #450874), remaining changes:
    - Install html files.
      - debian/dirs: Add 'var/www/nginx-default'.
      - debian/nginx.install: Add 'html/* var/www/nginx-default'.
    - Added a UFW profile set: (LP: #308695)
      + debian/nginx.ufw.profile: Added.
      + debian/control: nginx: Suggests ufw.
      + debian/dirs: Added 'etc/ufw/applications.d'
      + debian/rules: Added install rule for the nginx UFW profile.
  * Closes: LP: #260005, LP: #440888

Author: Daniel Hahler
Author Date: 2009-10-19 21:22:06 UTC

Import patches-unapplied version 0.7.62-4ubuntu1 to ubuntu/karmic

Imported using git-ubuntu import.

Changelog parent: 5406b0cede6b7b3f62738b0d6fe6f3c74236be4b

New changelog entries:
  * Merge from debian unstable (LP: #450874), remaining changes:
    - Install html files.
      - debian/dirs: Add 'var/www/nginx-default'.
      - debian/nginx.install: Add 'html/* var/www/nginx-default'.
    - Added a UFW profile set: (LP: #308695)
      + debian/nginx.ufw.profile: Added.
      + debian/control: nginx: Suggests ufw.
      + debian/dirs: Added 'etc/ufw/applications.d'
      + debian/rules: Added install rule for the nginx UFW profile.
  * Closes: LP: #260005, LP: #440888

Author: Andres Rodriguez
Author Date: 2009-10-09 18:24:40 UTC

Import patches-applied version 0.6.35-0ubuntu1.1~intrepid1 to applied/ubuntu/intrepid-backports

Imported using git-ubuntu import.

Changelog parent: a12087c941d1782be86089d07b69a93d909bb86e
Unapplied parent: fbba0a79209b574af375e38a4f61a9e25bbac0d1

New changelog entries:
  * Backport from Jaunty Security. (LP: #430913)

Author: Andres Rodriguez
Author Date: 2009-10-09 18:24:40 UTC

Import patches-unapplied version 0.6.35-0ubuntu1.1~intrepid1 to ubuntu/intrepid-backports

Imported using git-ubuntu import.

Changelog parent: 27ccf29ec29d1ca15bc7ee1d74b9c5be4b838416

New changelog entries:
  * Backport from Jaunty Security. (LP: #430913)

Author: Andres Rodriguez
Author Date: 2009-09-26 17:13:57 UTC

Import patches-unapplied version 0.6.35-0ubuntu1.1 to ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: 13f206a0bb5553de6fe821dc043f057799a44af6

New changelog entries:
  * SECURITY UPDATE: Buffer underflow vulnerability, which allows remote
    attackers to execute arbitrary code via crafted HTTP request. (LP: #430064)
    - src/http/ngx_http_parse.c patched.
    - CVE-2009-2629.

Author: Andres Rodriguez
Author Date: 2009-09-26 17:11:45 UTC

Import patches-unapplied version 0.6.32-3ubuntu1.1 to ubuntu/intrepid-security

Imported using git-ubuntu import.

Changelog parent: 9df049ebd6ccb337b7691df6b15cca47f4f98b73

New changelog entries:
  * SECURITY UPDATE: Buffer underflow vulnerability, which allows remote
    attackers to execute arbitrary code via crafted HTTP request. (LP: #430064)
    - 02-CVE-2009-2629.dpatch: src/http/ngx_http_parse.c patched.
    - CVE-2009-2629.

Author: Andres Rodriguez
Author Date: 2009-09-26 17:13:57 UTC

Import patches-applied version 0.6.35-0ubuntu1.1 to applied/ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: b8ddb0f1045695f732dfb09f5f5decdb0d5f55af
Unapplied parent: 27ccf29ec29d1ca15bc7ee1d74b9c5be4b838416

New changelog entries:
  * SECURITY UPDATE: Buffer underflow vulnerability, which allows remote
    attackers to execute arbitrary code via crafted HTTP request. (LP: #430064)
    - src/http/ngx_http_parse.c patched.
    - CVE-2009-2629.

Author: Andres Rodriguez
Author Date: 2009-09-26 17:13:57 UTC

Import patches-applied version 0.6.35-0ubuntu1.1 to applied/ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: b8ddb0f1045695f732dfb09f5f5decdb0d5f55af
Unapplied parent: 27ccf29ec29d1ca15bc7ee1d74b9c5be4b838416

New changelog entries:
  * SECURITY UPDATE: Buffer underflow vulnerability, which allows remote
    attackers to execute arbitrary code via crafted HTTP request. (LP: #430064)
    - src/http/ngx_http_parse.c patched.
    - CVE-2009-2629.

Author: Andres Rodriguez
Author Date: 2009-09-26 17:13:57 UTC

Import patches-applied version 0.6.35-0ubuntu1.1 to applied/ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: b8ddb0f1045695f732dfb09f5f5decdb0d5f55af
Unapplied parent: 27ccf29ec29d1ca15bc7ee1d74b9c5be4b838416

New changelog entries:
  * SECURITY UPDATE: Buffer underflow vulnerability, which allows remote
    attackers to execute arbitrary code via crafted HTTP request. (LP: #430064)
    - src/http/ngx_http_parse.c patched.
    - CVE-2009-2629.

Author: Andres Rodriguez
Author Date: 2009-09-26 17:11:45 UTC

Import patches-applied version 0.6.32-3ubuntu1.1 to applied/ubuntu/intrepid-security

Imported using git-ubuntu import.

Changelog parent: a4a8865d00aba5063ffd25dec42425b56c4413ba
Unapplied parent: 108131571ad5b165cee8f53cfc2b6cbfa7920728

New changelog entries:
  * SECURITY UPDATE: Buffer underflow vulnerability, which allows remote
    attackers to execute arbitrary code via crafted HTTP request. (LP: #430064)
    - 02-CVE-2009-2629.dpatch: src/http/ngx_http_parse.c patched.
    - CVE-2009-2629.

Author: Andres Rodriguez
Author Date: 2009-09-26 17:11:45 UTC

Import patches-applied version 0.6.32-3ubuntu1.1 to applied/ubuntu/intrepid-security

Imported using git-ubuntu import.

Changelog parent: a4a8865d00aba5063ffd25dec42425b56c4413ba
Unapplied parent: 108131571ad5b165cee8f53cfc2b6cbfa7920728

New changelog entries:
  * SECURITY UPDATE: Buffer underflow vulnerability, which allows remote
    attackers to execute arbitrary code via crafted HTTP request. (LP: #430064)
    - 02-CVE-2009-2629.dpatch: src/http/ngx_http_parse.c patched.
    - CVE-2009-2629.

Author: Andres Rodriguez
Author Date: 2009-09-26 17:11:45 UTC

Import patches-applied version 0.6.32-3ubuntu1.1 to applied/ubuntu/intrepid-security

Imported using git-ubuntu import.

Changelog parent: a4a8865d00aba5063ffd25dec42425b56c4413ba
Unapplied parent: 108131571ad5b165cee8f53cfc2b6cbfa7920728

New changelog entries:
  * SECURITY UPDATE: Buffer underflow vulnerability, which allows remote
    attackers to execute arbitrary code via crafted HTTP request. (LP: #430064)
    - 02-CVE-2009-2629.dpatch: src/http/ngx_http_parse.c patched.
    - CVE-2009-2629.

Author: Andres Rodriguez
Author Date: 2009-09-26 17:11:45 UTC

Import patches-unapplied version 0.6.32-3ubuntu1.1 to ubuntu/intrepid-security

Imported using git-ubuntu import.

Changelog parent: 9df049ebd6ccb337b7691df6b15cca47f4f98b73

New changelog entries:
  * SECURITY UPDATE: Buffer underflow vulnerability, which allows remote
    attackers to execute arbitrary code via crafted HTTP request. (LP: #430064)
    - 02-CVE-2009-2629.dpatch: src/http/ngx_http_parse.c patched.
    - CVE-2009-2629.

Author: Andres Rodriguez
Author Date: 2009-09-26 17:11:45 UTC

Import patches-unapplied version 0.6.32-3ubuntu1.1 to ubuntu/intrepid-security

Imported using git-ubuntu import.

Changelog parent: 9df049ebd6ccb337b7691df6b15cca47f4f98b73

New changelog entries:
  * SECURITY UPDATE: Buffer underflow vulnerability, which allows remote
    attackers to execute arbitrary code via crafted HTTP request. (LP: #430064)
    - 02-CVE-2009-2629.dpatch: src/http/ngx_http_parse.c patched.
    - CVE-2009-2629.

Author: Andres Rodriguez
Author Date: 2009-09-26 17:13:57 UTC

Import patches-unapplied version 0.6.35-0ubuntu1.1 to ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: 13f206a0bb5553de6fe821dc043f057799a44af6

New changelog entries:
  * SECURITY UPDATE: Buffer underflow vulnerability, which allows remote
    attackers to execute arbitrary code via crafted HTTP request. (LP: #430064)
    - src/http/ngx_http_parse.c patched.
    - CVE-2009-2629.

Author: Andres Rodriguez
Author Date: 2009-09-26 17:13:57 UTC

Import patches-unapplied version 0.6.35-0ubuntu1.1 to ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: 13f206a0bb5553de6fe821dc043f057799a44af6

New changelog entries:
  * SECURITY UPDATE: Buffer underflow vulnerability, which allows remote
    attackers to execute arbitrary code via crafted HTTP request. (LP: #430064)
    - src/http/ngx_http_parse.c patched.
    - CVE-2009-2629.