Author: Thomas Ward
Author Date: 2016-06-01 00:14:23 UTC

Import patches-unapplied version 1.9.3-1ubuntu1.2 to ubuntu/wily-security

Imported using git-ubuntu import.

Changelog parent: 6c9bc88ef224d54e36fb75720b4bb9351ea5dd70

New changelog entries:
  * SECURITY UPDATE: Null pointer dereference while writing client request
    body (LP: #1587577)
    - debian/patches/cve-2016-4450.patch: Upstream patch to address issue.
    - CVE-2016-4450

Author: Thomas Ward
Author Date: 2016-06-01 00:14:23 UTC

Import patches-unapplied version 1.9.3-1ubuntu1.2 to ubuntu/wily-security

Imported using git-ubuntu import.

Changelog parent: 6c9bc88ef224d54e36fb75720b4bb9351ea5dd70

New changelog entries:
  * SECURITY UPDATE: Null pointer dereference while writing client request
    body (LP: #1587577)
    - debian/patches/cve-2016-4450.patch: Upstream patch to address issue.
    - CVE-2016-4450

Author: Thomas Ward
Author Date: 2016-06-01 00:14:23 UTC

Import patches-applied version 1.9.3-1ubuntu1.2 to applied/ubuntu/wily-security

Imported using git-ubuntu import.

Changelog parent: d0fd44f32ce4cbafc6986b1d5cc84696e0059e0d
Unapplied parent: 51023b700a4369cd3b96756f519095009c0d6232

New changelog entries:
  * SECURITY UPDATE: Null pointer dereference while writing client request
    body (LP: #1587577)
    - debian/patches/cve-2016-4450.patch: Upstream patch to address issue.
    - CVE-2016-4450

Author: Thomas Ward
Author Date: 2016-06-01 00:14:23 UTC

Import patches-unapplied version 1.9.3-1ubuntu1.2 to ubuntu/wily-security

Imported using git-ubuntu import.

Changelog parent: 6c9bc88ef224d54e36fb75720b4bb9351ea5dd70

New changelog entries:
  * SECURITY UPDATE: Null pointer dereference while writing client request
    body (LP: #1587577)
    - debian/patches/cve-2016-4450.patch: Upstream patch to address issue.
    - CVE-2016-4450

Author: Thomas Ward
Author Date: 2016-06-01 00:14:23 UTC

Import patches-applied version 1.9.3-1ubuntu1.2 to applied/ubuntu/wily-security

Imported using git-ubuntu import.

Changelog parent: d0fd44f32ce4cbafc6986b1d5cc84696e0059e0d
Unapplied parent: 51023b700a4369cd3b96756f519095009c0d6232

New changelog entries:
  * SECURITY UPDATE: Null pointer dereference while writing client request
    body (LP: #1587577)
    - debian/patches/cve-2016-4450.patch: Upstream patch to address issue.
    - CVE-2016-4450

Author: Thomas Ward
Author Date: 2016-06-01 00:14:23 UTC

Import patches-applied version 1.9.3-1ubuntu1.2 to applied/ubuntu/wily-security

Imported using git-ubuntu import.

Changelog parent: d0fd44f32ce4cbafc6986b1d5cc84696e0059e0d
Unapplied parent: 51023b700a4369cd3b96756f519095009c0d6232

New changelog entries:
  * SECURITY UPDATE: Null pointer dereference while writing client request
    body (LP: #1587577)
    - debian/patches/cve-2016-4450.patch: Upstream patch to address issue.
    - CVE-2016-4450

Author: Thomas Ward
Author Date: 2016-05-31 23:09:33 UTC

Import patches-unapplied version 1.10.1-0ubuntu1 to ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: 5eb610cec1466bfea3b7e7276361aeb0330eb748

New changelog entries:
  * New upstream release (1.10.1) - full changelog available at upstream
    website - http://nginx.org/en/CHANGES-1.10.
  * Update done to address the following security issues:
    - [CVE-2016-4450] NULL pointer dereference while writing client
      request body. (LP: #1587577)
  * Additional changes:
    * debian/patches/ubuntu-branding.patch: Refreshed Ubuntu Branding patch.

Author: Thomas Ward
Author Date: 2016-05-31 23:09:33 UTC

Import patches-applied version 1.10.1-0ubuntu1 to applied/ubuntu/yakkety-proposed

Imported using git-ubuntu import.

Changelog parent: 5a0818f17529e9c7959618624e06db5267d69d12
Unapplied parent: 717e0a1088b275a9011297239e9010bf8ff79abe

New changelog entries:
  * New upstream release (1.10.1) - full changelog available at upstream
    website - http://nginx.org/en/CHANGES-1.10.
  * Update done to address the following security issues:
    - [CVE-2016-4450] NULL pointer dereference while writing client
      request body. (LP: #1587577)
  * Additional changes:
    * debian/patches/ubuntu-branding.patch: Refreshed Ubuntu Branding patch.

Author: Thomas Ward
Author Date: 2016-04-18 19:39:08 UTC

Import patches-applied version 1.9.15-0ubuntu1 to applied/ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: ef0683cfeb74bc234535f2f68d1d5181c9da4911
Unapplied parent: 96462db75e6406b8da373e367a3372296a989cf9

New changelog entries:
  * New upstream release (1.9.15) - full changelog available at upstream
    website - http://nginx.org/en/CHANGES (LP: #1572223)
  * All Ubuntu specific changes from 1.1.14-0ubuntu1, except noted below,
    remain included in this upload.
  * Remaining changes:
    * debian/control: Re-add libluajit-5.1-dev build-dependency, as it will
      only affect nginx-extras which is in Universe. This reduces the merge
      delta between Ubuntu and Debian slightly, as well. (LP: #1571444)
    * debian/patches/ubuntu-branding.patch: Refresh Ubuntu Branding patch.

Author: Thomas Ward
Author Date: 2016-04-18 19:39:08 UTC

Import patches-unapplied version 1.9.15-0ubuntu1 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Changelog parent: 305f0eaded9556098a8259dea8c55d17951adc5f

New changelog entries:
  * New upstream release (1.9.15) - full changelog available at upstream
    website - http://nginx.org/en/CHANGES (LP: #1572223)
  * All Ubuntu specific changes from 1.1.14-0ubuntu1, except noted below,
    remain included in this upload.
  * Remaining changes:
    * debian/control: Re-add libluajit-5.1-dev build-dependency, as it will
      only affect nginx-extras which is in Universe. This reduces the merge
      delta between Ubuntu and Debian slightly, as well. (LP: #1571444)
    * debian/patches/ubuntu-branding.patch: Refresh Ubuntu Branding patch.

Author: ctrochalakis
Author Date: 2016-01-28 11:42:29 UTC

Import patches-applied version 1.2.1-2.2+wheezy4 to applied/debian/wheezy

Imported using git-ubuntu import.

Changelog parent: 8fbe5e387a628c1685b2604dd947cc7f9d45c70e
Unapplied parent: 998d1e324c4ef1ef5da8466747de63e8c09682b0

New changelog entries:
  [ Christos Trochalakis ]
  * Fixes multiple resolver CVEs,
    CVE-2016-0742, CVE-2016-0746, CVE-2016-0747
    Closes: #812806

Author: ctrochalakis
Author Date: 2016-01-28 11:42:29 UTC

Import patches-unapplied version 1.2.1-2.2+wheezy4 to debian/wheezy

Imported using git-ubuntu import.

Changelog parent: f445aad34c40239f642f508e873d1d968065db19

New changelog entries:
  [ Christos Trochalakis ]
  * Fixes multiple resolver CVEs,
    CVE-2016-0742, CVE-2016-0746, CVE-2016-0747
    Closes: #812806

Author: Thomas Ward
Author Date: 2015-07-29 23:43:04 UTC

Import patches-unapplied version 1.4.6-1ubuntu3.3 to ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: 474940757be5fee9a50343c04e3d9bd68dc2070f

New changelog entries:
  * debian/nginx-common.nginx.init: Fix pidfile extraction, due to multiple
    failure cases, using Debian's solution. (LP: #1314740)

Author: Thomas Ward
Author Date: 2015-07-29 23:43:04 UTC

Import patches-applied version 1.4.6-1ubuntu3.3 to applied/ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: 1dfa767a21712129492e2da24fe25b1c88528824
Unapplied parent: a14e0e501f19e927d43fb4c22630dd4cd390c400

New changelog entries:
  * debian/nginx-common.nginx.init: Fix pidfile extraction, due to multiple
    failure cases, using Debian's solution. (LP: #1314740)

Author: Thomas Ward
Author Date: 2015-07-22 15:39:44 UTC

Import patches-applied version 1.9.3-1ubuntu1 to applied/ubuntu/wily-proposed

Imported using git-ubuntu import.

Changelog parent: 92f4e7baefa9dbe7b14727847a12e98e1d225601
Unapplied parent: 4ad9003ac2ea6b66fe934db1c22ee63b934b651f

New changelog entries:
  * Merge from Debian. Remaining changes: (LP: #1476811)
    - debian/patches/ubuntu-branding.patch: add Ubuntu branding (refreshed)
    - d/{control,rules,nginx-core.*}: add new binary package for main,
      nginx-core, which contains only source-tarball-included modules
      and no third-party modules.
    - debian/tests/control: add nginx-core test.
    - debian/control: drop luajit from Build-Depends as it is in universe.
    - debian/apport/source_nginx.py: Add apport hooks for additional bug
      information gathering.
    - debian/nginx-common.install: Add install rule for apport hooks.

Author: Thomas Ward
Author Date: 2015-07-22 15:39:44 UTC

Import patches-applied version 1.9.3-1ubuntu1 to applied/ubuntu/wily-proposed

Imported using git-ubuntu import.

Changelog parent: 92f4e7baefa9dbe7b14727847a12e98e1d225601
Unapplied parent: 4ad9003ac2ea6b66fe934db1c22ee63b934b651f

New changelog entries:
  * Merge from Debian. Remaining changes: (LP: #1476811)
    - debian/patches/ubuntu-branding.patch: add Ubuntu branding (refreshed)
    - d/{control,rules,nginx-core.*}: add new binary package for main,
      nginx-core, which contains only source-tarball-included modules
      and no third-party modules.
    - debian/tests/control: add nginx-core test.
    - debian/control: drop luajit from Build-Depends as it is in universe.
    - debian/apport/source_nginx.py: Add apport hooks for additional bug
      information gathering.
    - debian/nginx-common.install: Add install rule for apport hooks.

Author: Thomas Ward
Author Date: 2015-07-22 15:39:44 UTC

Import patches-unapplied version 1.9.3-1ubuntu1 to ubuntu/wily-proposed

Imported using git-ubuntu import.

Changelog parent: 3556730aa419a7ac8455a93cf16c99746a55fafc

New changelog entries:
  * Merge from Debian. Remaining changes: (LP: #1476811)
    - debian/patches/ubuntu-branding.patch: add Ubuntu branding (refreshed)
    - d/{control,rules,nginx-core.*}: add new binary package for main,
      nginx-core, which contains only source-tarball-included modules
      and no third-party modules.
    - debian/tests/control: add nginx-core test.
    - debian/control: drop luajit from Build-Depends as it is in universe.
    - debian/apport/source_nginx.py: Add apport hooks for additional bug
      information gathering.
    - debian/nginx-common.install: Add install rule for apport hooks.

Author: Thomas Ward
Author Date: 2015-07-22 15:39:44 UTC

Import patches-unapplied version 1.9.3-1ubuntu1 to ubuntu/wily-proposed

Imported using git-ubuntu import.

Changelog parent: 3556730aa419a7ac8455a93cf16c99746a55fafc

New changelog entries:
  * Merge from Debian. Remaining changes: (LP: #1476811)
    - debian/patches/ubuntu-branding.patch: add Ubuntu branding (refreshed)
    - d/{control,rules,nginx-core.*}: add new binary package for main,
      nginx-core, which contains only source-tarball-included modules
      and no third-party modules.
    - debian/tests/control: add nginx-core test.
    - debian/control: drop luajit from Build-Depends as it is in universe.
    - debian/apport/source_nginx.py: Add apport hooks for additional bug
      information gathering.
    - debian/nginx-common.install: Add install rule for apport hooks.

Author: Thomas Ward
Author Date: 2015-07-10 15:14:00 UTC

Import patches-unapplied version 1.6.2-5ubuntu3.1 to ubuntu/vivid-proposed

Imported using git-ubuntu import.

Changelog parent: 5750dcf994f1577539312f66928595e7a59b0070

New changelog entries:
  * debian/apport/source_nginx.py:
    - Add apport hooks for additional bug information gathering, as a result
      of non-useful reports due to postinstall script failure bugs. This is
      necessary in order to be able to actually debug what is going on in the
      bug reports, thanks to systemd not putting startup errors to stdout or
      stderr anymore, like Upstart and others did. (LP: #1472683)
  * debian/nginx-common.install:
    - Add install rule for debian/apport/source_nginx.py, which is the new
      apport hooks to gather additional 'Package' bugtype debug data.

Author: Thomas Ward
Author Date: 2015-07-10 15:14:00 UTC

Import patches-applied version 1.6.2-5ubuntu3.1 to applied/ubuntu/vivid-proposed

Imported using git-ubuntu import.

Changelog parent: 0fc5bd0ab7554fedac59487d39e7d392d0d144a8
Unapplied parent: f9b17d9e470dfe275b1e908e2c3da5ef691667cf

New changelog entries:
  * debian/apport/source_nginx.py:
    - Add apport hooks for additional bug information gathering, as a result
      of non-useful reports due to postinstall script failure bugs. This is
      necessary in order to be able to actually debug what is going on in the
      bug reports, thanks to systemd not putting startup errors to stdout or
      stderr anymore, like Upstart and others did. (LP: #1472683)
  * debian/nginx-common.install:
    - Add install rule for debian/apport/source_nginx.py, which is the new
      apport hooks to gather additional 'Package' bugtype debug data.

Author: Thomas Ward
Author Date: 2015-07-10 15:14:00 UTC

Import patches-applied version 1.6.2-5ubuntu3.1 to applied/ubuntu/vivid-proposed

Imported using git-ubuntu import.

Changelog parent: 0fc5bd0ab7554fedac59487d39e7d392d0d144a8
Unapplied parent: f9b17d9e470dfe275b1e908e2c3da5ef691667cf

New changelog entries:
  * debian/apport/source_nginx.py:
    - Add apport hooks for additional bug information gathering, as a result
      of non-useful reports due to postinstall script failure bugs. This is
      necessary in order to be able to actually debug what is going on in the
      bug reports, thanks to systemd not putting startup errors to stdout or
      stderr anymore, like Upstart and others did. (LP: #1472683)
  * debian/nginx-common.install:
    - Add install rule for debian/apport/source_nginx.py, which is the new
      apport hooks to gather additional 'Package' bugtype debug data.

Author: Thomas Ward
Author Date: 2015-07-10 15:14:00 UTC

Import patches-applied version 1.6.2-5ubuntu3.1 to applied/ubuntu/vivid-proposed

Imported using git-ubuntu import.

Changelog parent: 0fc5bd0ab7554fedac59487d39e7d392d0d144a8
Unapplied parent: f9b17d9e470dfe275b1e908e2c3da5ef691667cf

New changelog entries:
  * debian/apport/source_nginx.py:
    - Add apport hooks for additional bug information gathering, as a result
      of non-useful reports due to postinstall script failure bugs. This is
      necessary in order to be able to actually debug what is going on in the
      bug reports, thanks to systemd not putting startup errors to stdout or
      stderr anymore, like Upstart and others did. (LP: #1472683)
  * debian/nginx-common.install:
    - Add install rule for debian/apport/source_nginx.py, which is the new
      apport hooks to gather additional 'Package' bugtype debug data.

Author: Thomas Ward
Author Date: 2015-07-10 15:14:00 UTC

Import patches-unapplied version 1.6.2-5ubuntu3.1 to ubuntu/vivid-proposed

Imported using git-ubuntu import.

Changelog parent: 5750dcf994f1577539312f66928595e7a59b0070

New changelog entries:
  * debian/apport/source_nginx.py:
    - Add apport hooks for additional bug information gathering, as a result
      of non-useful reports due to postinstall script failure bugs. This is
      necessary in order to be able to actually debug what is going on in the
      bug reports, thanks to systemd not putting startup errors to stdout or
      stderr anymore, like Upstart and others did. (LP: #1472683)
  * debian/nginx-common.install:
    - Add install rule for debian/apport/source_nginx.py, which is the new
      apport hooks to gather additional 'Package' bugtype debug data.

Author: Thomas Ward
Author Date: 2015-07-10 15:14:00 UTC

Import patches-unapplied version 1.6.2-5ubuntu3.1 to ubuntu/vivid-proposed

Imported using git-ubuntu import.

Changelog parent: 5750dcf994f1577539312f66928595e7a59b0070

New changelog entries:
  * debian/apport/source_nginx.py:
    - Add apport hooks for additional bug information gathering, as a result
      of non-useful reports due to postinstall script failure bugs. This is
      necessary in order to be able to actually debug what is going on in the
      bug reports, thanks to systemd not putting startup errors to stdout or
      stderr anymore, like Upstart and others did. (LP: #1472683)
  * debian/nginx-common.install:
    - Add install rule for debian/apport/source_nginx.py, which is the new
      apport hooks to gather additional 'Package' bugtype debug data.

Author: Thomas Ward
Author Date: 2015-04-01 18:57:34 UTC

Import patches-applied version 1.6.2-5ubuntu3 to applied/ubuntu/vivid-proposed

Imported using git-ubuntu import.

Changelog parent: 257d733a096e5988e9984b84a4f32ace39c98018
Unapplied parent: 72e29eaa14423e308096b10aa6eff7cbd2526b6b

New changelog entries:
  * debian/rules:
    * Reversed Debian change in 1.6.2-5ubuntu2.
    * Added DEB_BUILD_MAINT_OPTIONS=hardening=+all to enable all
      dpkg-buildflags to harden the code, except for PIE flags.
    * Manually define DEB_BUILD_MAINT_OPTIONS in DEBIAN_NGINX_PERL_LDFLAGS
      to not have -fPIE conflicts in Perl flags.

Author: Thomas Ward
Author Date: 2015-04-01 18:57:34 UTC

Import patches-unapplied version 1.6.2-5ubuntu3 to ubuntu/vivid-proposed

Imported using git-ubuntu import.

Changelog parent: f2cd2c5757436652c2d0e7a921e86ebbf12f8c86

New changelog entries:
  * debian/rules:
    * Reversed Debian change in 1.6.2-5ubuntu2.
    * Added DEB_BUILD_MAINT_OPTIONS=hardening=+all to enable all
      dpkg-buildflags to harden the code, except for PIE flags.
    * Manually define DEB_BUILD_MAINT_OPTIONS in DEBIAN_NGINX_PERL_LDFLAGS
      to not have -fPIE conflicts in Perl flags.

Author: Thomas Ward
Author Date: 2015-02-09 17:02:52 UTC

Import patches-unapplied version 1.1.19-1ubuntu0.8 to ubuntu/precise-proposed

Imported using git-ubuntu import.

Changelog parent: 07e124e1200b18c2fb7bb2f7608b75db44df095b

New changelog entries:
  * d/modules/nginx-http-push: Apply upstream bugfix. (LP: #1216817)
    * src/ngx_http_push_module_setup.c: Modify push module code with
      upstream changes to fix an issue with initialization when using
      `fastcgi_cache` or `proxy_cache`.
    * tests/nginx-cachemanager.conf: (new file) Include upstream change
      of adding an nginx-cachemanager.conf file to the tests.

Author: Thomas Ward
Author Date: 2015-02-09 17:02:52 UTC

Import patches-unapplied version 1.1.19-1ubuntu0.8 to ubuntu/precise-proposed

Imported using git-ubuntu import.

Changelog parent: 07e124e1200b18c2fb7bb2f7608b75db44df095b

New changelog entries:
  * d/modules/nginx-http-push: Apply upstream bugfix. (LP: #1216817)
    * src/ngx_http_push_module_setup.c: Modify push module code with
      upstream changes to fix an issue with initialization when using
      `fastcgi_cache` or `proxy_cache`.
    * tests/nginx-cachemanager.conf: (new file) Include upstream change
      of adding an nginx-cachemanager.conf file to the tests.

Author: Thomas Ward
Author Date: 2015-02-09 17:02:52 UTC

Import patches-applied version 1.1.19-1ubuntu0.8 to applied/ubuntu/precise-proposed

Imported using git-ubuntu import.

Changelog parent: 1c2fcb1e57e7d03303963f4e10d3de6780a3352f
Unapplied parent: 68f6d7788912e0ac6ef3336b288bb2418f7c4d91

New changelog entries:
  * d/modules/nginx-http-push: Apply upstream bugfix. (LP: #1216817)
    * src/ngx_http_push_module_setup.c: Modify push module code with
      upstream changes to fix an issue with initialization when using
      `fastcgi_cache` or `proxy_cache`.
    * tests/nginx-cachemanager.conf: (new file) Include upstream change
      of adding an nginx-cachemanager.conf file to the tests.

Author: Thomas Ward
Author Date: 2015-02-09 17:02:52 UTC

Import patches-applied version 1.1.19-1ubuntu0.8 to applied/ubuntu/precise-proposed

Imported using git-ubuntu import.

Changelog parent: 1c2fcb1e57e7d03303963f4e10d3de6780a3352f
Unapplied parent: 68f6d7788912e0ac6ef3336b288bb2418f7c4d91

New changelog entries:
  * d/modules/nginx-http-push: Apply upstream bugfix. (LP: #1216817)
    * src/ngx_http_push_module_setup.c: Modify push module code with
      upstream changes to fix an issue with initialization when using
      `fastcgi_cache` or `proxy_cache`.
    * tests/nginx-cachemanager.conf: (new file) Include upstream change
      of adding an nginx-cachemanager.conf file to the tests.

Author: Thomas Ward
Author Date: 2015-02-09 17:02:52 UTC

Import patches-unapplied version 1.1.19-1ubuntu0.8 to ubuntu/precise-proposed

Imported using git-ubuntu import.

Changelog parent: 07e124e1200b18c2fb7bb2f7608b75db44df095b

New changelog entries:
  * d/modules/nginx-http-push: Apply upstream bugfix. (LP: #1216817)
    * src/ngx_http_push_module_setup.c: Modify push module code with
      upstream changes to fix an issue with initialization when using
      `fastcgi_cache` or `proxy_cache`.
    * tests/nginx-cachemanager.conf: (new file) Include upstream change
      of adding an nginx-cachemanager.conf file to the tests.

Author: Thomas Ward
Author Date: 2015-02-09 17:02:52 UTC

Import patches-applied version 1.1.19-1ubuntu0.8 to applied/ubuntu/precise-proposed

Imported using git-ubuntu import.

Changelog parent: 1c2fcb1e57e7d03303963f4e10d3de6780a3352f
Unapplied parent: 68f6d7788912e0ac6ef3336b288bb2418f7c4d91

New changelog entries:
  * d/modules/nginx-http-push: Apply upstream bugfix. (LP: #1216817)
    * src/ngx_http_push_module_setup.c: Modify push module code with
      upstream changes to fix an issue with initialization when using
      `fastcgi_cache` or `proxy_cache`.
    * tests/nginx-cachemanager.conf: (new file) Include upstream change
      of adding an nginx-cachemanager.conf file to the tests.

Author: Lev Lazinskiy
Author Date: 2014-12-06 03:25:50 UTC

Import patches-unapplied version 1.1.19-1ubuntu0.7 to ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: 8c869281fd52aa21da186fc3914629c2403189b1

New changelog entries:
  * SECURITY UPDATE: incorrect cached SSL session reuse (LP: #1370478)
    - debian/patches/CVE-2014-3616.patch: Use a random value for session id
      context, since there is no support for shared TLS Session Tickets in
      this version in src/event/ngx_event_openssl.c.
    - CVE-2014-3616

Author: Lev Lazinskiy
Author Date: 2014-12-06 03:25:50 UTC

Import patches-applied version 1.1.19-1ubuntu0.7 to applied/ubuntu/precise-security

Imported using git-ubuntu import.

Changelog parent: 2062c3bd11ed2818d127241f21c802ae7b7c3423
Unapplied parent: 0fb2d696ed64edc31b8658440c4f9cda1638ca6f

New changelog entries:
  * SECURITY UPDATE: incorrect cached SSL session reuse (LP: #1370478)
    - debian/patches/CVE-2014-3616.patch: Use a random value for session id
      context, since there is no support for shared TLS Session Tickets in
      this version in src/event/ngx_event_openssl.c.
    - CVE-2014-3616

Author: Thomas Ward
Author Date: 2014-10-22 13:43:35 UTC

Import patches-applied version 1.6.2-1ubuntu1.1 to applied/ubuntu/utopic-proposed

Imported using git-ubuntu import.

Changelog parent: 74c75af90eca57bbf0abd0c963d8651194c14665
Unapplied parent: 45fea9ea6d32e7fd61fd4c3f8c3da6270e9febb5

New changelog entries:
  * debian/conf/sites-available/default: Remove SSLv3 from the ssl_protocols
    line in the default config example, due to POODLE vulnerability.

Author: Thomas Ward
Author Date: 2014-10-22 13:43:35 UTC

Import patches-applied version 1.6.2-1ubuntu1.1 to applied/ubuntu/utopic-proposed

Imported using git-ubuntu import.

Changelog parent: 74c75af90eca57bbf0abd0c963d8651194c14665
Unapplied parent: 45fea9ea6d32e7fd61fd4c3f8c3da6270e9febb5

New changelog entries:
  * debian/conf/sites-available/default: Remove SSLv3 from the ssl_protocols
    line in the default config example, due to POODLE vulnerability.

Author: Thomas Ward
Author Date: 2014-10-22 13:43:35 UTC

Import patches-applied version 1.6.2-1ubuntu1.1 to applied/ubuntu/utopic-proposed

Imported using git-ubuntu import.

Changelog parent: 74c75af90eca57bbf0abd0c963d8651194c14665
Unapplied parent: 45fea9ea6d32e7fd61fd4c3f8c3da6270e9febb5

New changelog entries:
  * debian/conf/sites-available/default: Remove SSLv3 from the ssl_protocols
    line in the default config example, due to POODLE vulnerability.

Author: Thomas Ward
Author Date: 2014-10-22 13:43:35 UTC

Import patches-unapplied version 1.6.2-1ubuntu1.1 to ubuntu/utopic-proposed

Imported using git-ubuntu import.

Changelog parent: defc4329ff9771657cbac3f108007e3874e04c92

New changelog entries:
  * debian/conf/sites-available/default: Remove SSLv3 from the ssl_protocols
    line in the default config example, due to POODLE vulnerability.

Author: Thomas Ward
Author Date: 2014-10-22 13:43:35 UTC

Import patches-unapplied version 1.6.2-1ubuntu1.1 to ubuntu/utopic-proposed

Imported using git-ubuntu import.

Changelog parent: defc4329ff9771657cbac3f108007e3874e04c92

New changelog entries:
  * debian/conf/sites-available/default: Remove SSLv3 from the ssl_protocols
    line in the default config example, due to POODLE vulnerability.

Author: Thomas Ward
Author Date: 2014-10-22 13:43:35 UTC

Import patches-unapplied version 1.6.2-1ubuntu1.1 to ubuntu/utopic-proposed

Imported using git-ubuntu import.

Changelog parent: defc4329ff9771657cbac3f108007e3874e04c92

New changelog entries:
  * debian/conf/sites-available/default: Remove SSLv3 from the ssl_protocols
    line in the default config example, due to POODLE vulnerability.

Author: Thomas Ward
Author Date: 2014-03-19 01:17:14 UTC

Import patches-applied version 1.4.1-3ubuntu1.3 to applied/ubuntu/saucy-security

Imported using git-ubuntu import.

Changelog parent: 1fc84e5118010f4d129e545330bc3b4a6d9f4487
Unapplied parent: 6b8ad37b49fd0194d7278e75e0d5504800864594

New changelog entries:
  * SECURITY UPDATE: SPDY Heap Buffer Overflow Vulnerabilty (LP: #1294280)
    - debian/patches/cve-2014-0133.patch: modify src/http/ngx_http_spdy.c to
      fix a heap buffer overflow vulnerability in the SPDY module by using
      a specially crafted request.
    - CVE-2014-0133

Author: Thomas Ward
Author Date: 2014-03-19 01:17:14 UTC

Import patches-applied version 1.4.1-3ubuntu1.3 to applied/ubuntu/saucy-security

Imported using git-ubuntu import.

Changelog parent: 1fc84e5118010f4d129e545330bc3b4a6d9f4487
Unapplied parent: 6b8ad37b49fd0194d7278e75e0d5504800864594

New changelog entries:
  * SECURITY UPDATE: SPDY Heap Buffer Overflow Vulnerabilty (LP: #1294280)
    - debian/patches/cve-2014-0133.patch: modify src/http/ngx_http_spdy.c to
      fix a heap buffer overflow vulnerability in the SPDY module by using
      a specially crafted request.
    - CVE-2014-0133

Author: Thomas Ward
Author Date: 2014-03-19 01:17:14 UTC

Import patches-applied version 1.4.1-3ubuntu1.3 to applied/ubuntu/saucy-security

Imported using git-ubuntu import.

Changelog parent: 1fc84e5118010f4d129e545330bc3b4a6d9f4487
Unapplied parent: 6b8ad37b49fd0194d7278e75e0d5504800864594

New changelog entries:
  * SECURITY UPDATE: SPDY Heap Buffer Overflow Vulnerabilty (LP: #1294280)
    - debian/patches/cve-2014-0133.patch: modify src/http/ngx_http_spdy.c to
      fix a heap buffer overflow vulnerability in the SPDY module by using
      a specially crafted request.
    - CVE-2014-0133

Author: Thomas Ward
Author Date: 2014-03-19 01:17:14 UTC

Import patches-unapplied version 1.4.1-3ubuntu1.3 to ubuntu/saucy-security

Imported using git-ubuntu import.

Changelog parent: 4ae708bb6141416d5d0bb901c9f3788da582626f

New changelog entries:
  * SECURITY UPDATE: SPDY Heap Buffer Overflow Vulnerabilty (LP: #1294280)
    - debian/patches/cve-2014-0133.patch: modify src/http/ngx_http_spdy.c to
      fix a heap buffer overflow vulnerability in the SPDY module by using
      a specially crafted request.
    - CVE-2014-0133

Author: Thomas Ward
Author Date: 2014-03-19 01:17:14 UTC

Import patches-unapplied version 1.4.1-3ubuntu1.3 to ubuntu/saucy-security

Imported using git-ubuntu import.

Changelog parent: 4ae708bb6141416d5d0bb901c9f3788da582626f

New changelog entries:
  * SECURITY UPDATE: SPDY Heap Buffer Overflow Vulnerabilty (LP: #1294280)
    - debian/patches/cve-2014-0133.patch: modify src/http/ngx_http_spdy.c to
      fix a heap buffer overflow vulnerability in the SPDY module by using
      a specially crafted request.
    - CVE-2014-0133

Author: Thomas Ward
Author Date: 2014-03-19 01:17:14 UTC

Import patches-unapplied version 1.4.1-3ubuntu1.3 to ubuntu/saucy-security

Imported using git-ubuntu import.

Changelog parent: 4ae708bb6141416d5d0bb901c9f3788da582626f

New changelog entries:
  * SECURITY UPDATE: SPDY Heap Buffer Overflow Vulnerabilty (LP: #1294280)
    - debian/patches/cve-2014-0133.patch: modify src/http/ngx_http_spdy.c to
      fix a heap buffer overflow vulnerability in the SPDY module by using
      a specially crafted request.
    - CVE-2014-0133

Author: Thomas Ward
Author Date: 2014-03-10 22:23:36 UTC

Import patches-applied version 1.4.6-1ubuntu3 to applied/ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: 75dee4022970793c4d2d135fe20b293265e85c11
Unapplied parent: 269314baa04a7ad85e3295c2db0a10a327bcef31

New changelog entries:
  * Add new binary package for main, nginx-core, which contains only
    source-tarball-included modules and no third-party modules.
  * Changes to debian/ directory:
    - control:
      + Add entry for nginx-core and nginx-core-dbg.
    - rules:
      + Add nginx-core flavor to the build rules.
    - nginx-core.*: Add new packaging files for nginx-core based on
      the packaging files for nginx-full.
  * The above changes satisfy the requirements for main (LP: #1262710)

Author: Thomas Ward
Author Date: 2014-03-10 22:23:36 UTC

Import patches-unapplied version 1.4.6-1ubuntu3 to ubuntu/trusty-proposed

Imported using git-ubuntu import.

Changelog parent: dee08f5931ba689b998ad9491418a56a40f9e404

New changelog entries:
  * Add new binary package for main, nginx-core, which contains only
    source-tarball-included modules and no third-party modules.
  * Changes to debian/ directory:
    - control:
      + Add entry for nginx-core and nginx-core-dbg.
    - rules:
      + Add nginx-core flavor to the build rules.
    - nginx-core.*: Add new packaging files for nginx-core based on
      the packaging files for nginx-full.
  * The above changes satisfy the requirements for main (LP: #1262710)

Author: Thomas Ward
Author Date: 2014-02-10 02:14:14 UTC

Import patches-applied version 1.4.1-3ubuntu1.2 to applied/ubuntu/saucy-proposed

Imported using git-ubuntu import.

Changelog parent: f23719d136bf174203e4f0b9fae87f4e6cf4f838
Unapplied parent: 462e02a25a2f1afbe82cd4d212a5ea383d1c4215

New changelog entries:
  * Apply upstream changes to fix a segmentation fault in the third-party
    ngx_auth_pam module in nginx-full and nginx-extras. (LP: #1264674)

Author: Thomas Ward
Author Date: 2014-02-10 02:14:14 UTC

Import patches-unapplied version 1.4.1-3ubuntu1.2 to ubuntu/saucy-proposed

Imported using git-ubuntu import.

Changelog parent: 86eaf7be64c9d6d9846d6b7d1bf75e361cafc854

New changelog entries:
  * Apply upstream changes to fix a segmentation fault in the third-party
    ngx_auth_pam module in nginx-full and nginx-extras. (LP: #1264674)

Author: Thomas Ward
Author Date: 2013-11-21 18:19:37 UTC

Import patches-unapplied version 1.2.1-2.2ubuntu0.2 to ubuntu/quantal-security

Imported using git-ubuntu import.

Changelog parent: b76ad5c6769c8fbc24ced7f388fc0d8dc146613f

New changelog entries:
  * SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
    - debian/patches/cve-2013-4547.patch: modify src/http/ngx_http_parse.c
      to account for a space character, fixing an issue which could result in
      security restrictions being bypassed
    - CVE-2013-4547

Author: Thomas Ward
Author Date: 2013-11-21 18:19:37 UTC

Import patches-unapplied version 1.2.1-2.2ubuntu0.2 to ubuntu/quantal-security

Imported using git-ubuntu import.

Changelog parent: b76ad5c6769c8fbc24ced7f388fc0d8dc146613f

New changelog entries:
  * SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
    - debian/patches/cve-2013-4547.patch: modify src/http/ngx_http_parse.c
      to account for a space character, fixing an issue which could result in
      security restrictions being bypassed
    - CVE-2013-4547

Author: Thomas Ward
Author Date: 2013-11-21 18:19:37 UTC

Import patches-unapplied version 1.2.1-2.2ubuntu0.2 to ubuntu/quantal-security

Imported using git-ubuntu import.

Changelog parent: b76ad5c6769c8fbc24ced7f388fc0d8dc146613f

New changelog entries:
  * SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
    - debian/patches/cve-2013-4547.patch: modify src/http/ngx_http_parse.c
      to account for a space character, fixing an issue which could result in
      security restrictions being bypassed
    - CVE-2013-4547

Author: Thomas Ward
Author Date: 2013-11-21 18:19:37 UTC

Import patches-applied version 1.2.1-2.2ubuntu0.2 to applied/ubuntu/quantal-security

Imported using git-ubuntu import.

Changelog parent: c3a8e558d3bb723301eb5f7daaf50549b0b2cffb
Unapplied parent: b76111dddae965d74362fd975c7d46afcfbaa9a3

New changelog entries:
  * SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
    - debian/patches/cve-2013-4547.patch: modify src/http/ngx_http_parse.c
      to account for a space character, fixing an issue which could result in
      security restrictions being bypassed
    - CVE-2013-4547

Author: Thomas Ward
Author Date: 2013-11-21 18:19:37 UTC

Import patches-applied version 1.2.1-2.2ubuntu0.2 to applied/ubuntu/quantal-security

Imported using git-ubuntu import.

Changelog parent: c3a8e558d3bb723301eb5f7daaf50549b0b2cffb
Unapplied parent: b76111dddae965d74362fd975c7d46afcfbaa9a3

New changelog entries:
  * SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
    - debian/patches/cve-2013-4547.patch: modify src/http/ngx_http_parse.c
      to account for a space character, fixing an issue which could result in
      security restrictions being bypassed
    - CVE-2013-4547

Author: Thomas Ward
Author Date: 2013-11-21 18:19:37 UTC

Import patches-applied version 1.2.1-2.2ubuntu0.2 to applied/ubuntu/quantal-security

Imported using git-ubuntu import.

Changelog parent: c3a8e558d3bb723301eb5f7daaf50549b0b2cffb
Unapplied parent: b76111dddae965d74362fd975c7d46afcfbaa9a3

New changelog entries:
  * SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
    - debian/patches/cve-2013-4547.patch: modify src/http/ngx_http_parse.c
      to account for a space character, fixing an issue which could result in
      security restrictions being bypassed
    - CVE-2013-4547

Author: Thomas Ward
Author Date: 2013-11-21 18:24:46 UTC

Import patches-applied version 1.2.6-1ubuntu3.3 to applied/ubuntu/raring-security

Imported using git-ubuntu import.

Changelog parent: f413975f8cca251ceddb5ff3ab8de93410079aff
Unapplied parent: 2a6df18526435f83d40517c208641756e820ff81

New changelog entries:
  * SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
    - debian/patches/cve-2013-4547.patch: modify src/http/ngx_http_parse.c
      to account for a space character, fixing an issue which could result in
      security restrictions being bypassed
    - CVE-2013-4547

Author: Thomas Ward
Author Date: 2013-11-21 18:24:46 UTC

Import patches-applied version 1.2.6-1ubuntu3.3 to applied/ubuntu/raring-security

Imported using git-ubuntu import.

Changelog parent: f413975f8cca251ceddb5ff3ab8de93410079aff
Unapplied parent: 2a6df18526435f83d40517c208641756e820ff81

New changelog entries:
  * SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
    - debian/patches/cve-2013-4547.patch: modify src/http/ngx_http_parse.c
      to account for a space character, fixing an issue which could result in
      security restrictions being bypassed
    - CVE-2013-4547

Author: Thomas Ward
Author Date: 2013-11-21 18:24:46 UTC

Import patches-unapplied version 1.2.6-1ubuntu3.3 to ubuntu/raring-security

Imported using git-ubuntu import.

Changelog parent: 5d8995c2a81ab15bef50066362fa323be552c874

New changelog entries:
  * SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
    - debian/patches/cve-2013-4547.patch: modify src/http/ngx_http_parse.c
      to account for a space character, fixing an issue which could result in
      security restrictions being bypassed
    - CVE-2013-4547

Author: Thomas Ward
Author Date: 2013-11-21 18:24:46 UTC

Import patches-unapplied version 1.2.6-1ubuntu3.3 to ubuntu/raring-security

Imported using git-ubuntu import.

Changelog parent: 5d8995c2a81ab15bef50066362fa323be552c874

New changelog entries:
  * SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
    - debian/patches/cve-2013-4547.patch: modify src/http/ngx_http_parse.c
      to account for a space character, fixing an issue which could result in
      security restrictions being bypassed
    - CVE-2013-4547

Author: Thomas Ward
Author Date: 2013-11-21 18:24:46 UTC

Import patches-applied version 1.2.6-1ubuntu3.3 to applied/ubuntu/raring-security

Imported using git-ubuntu import.

Changelog parent: f413975f8cca251ceddb5ff3ab8de93410079aff
Unapplied parent: 2a6df18526435f83d40517c208641756e820ff81

New changelog entries:
  * SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
    - debian/patches/cve-2013-4547.patch: modify src/http/ngx_http_parse.c
      to account for a space character, fixing an issue which could result in
      security restrictions being bypassed
    - CVE-2013-4547

Author: Thomas Ward
Author Date: 2013-11-21 18:24:46 UTC

Import patches-unapplied version 1.2.6-1ubuntu3.3 to ubuntu/raring-security

Imported using git-ubuntu import.

Changelog parent: 5d8995c2a81ab15bef50066362fa323be552c874

New changelog entries:
  * SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
    - debian/patches/cve-2013-4547.patch: modify src/http/ngx_http_parse.c
      to account for a space character, fixing an issue which could result in
      security restrictions being bypassed
    - CVE-2013-4547

Author: Colin Watson
Author Date: 2013-06-20 14:08:44 UTC

Import patches-unapplied version 1.4.1-3ubuntu1 to ubuntu/saucy-proposed

Imported using git-ubuntu import.

Changelog parent: d8e3e718625fafa36d09cd54883ce5bbdb91880c

New changelog entries:
  * Resynchronise with Debian. Remaining changes:
    - debian/patches/ubuntu-branding.patch:
      + Add Ubuntu branding to server_tokens.

Author: Colin Watson
Author Date: 2013-06-20 14:08:44 UTC

Import patches-applied version 1.4.1-3ubuntu1 to applied/ubuntu/saucy-proposed

Imported using git-ubuntu import.

Changelog parent: 9930319861c2f1764bcda9658653998237b447c7
Unapplied parent: 9d97ffab0b79d395f918fb33844c0da8829e8f97

New changelog entries:
  * Resynchronise with Debian. Remaining changes:
    - debian/patches/ubuntu-branding.patch:
      + Add Ubuntu branding to server_tokens.

Author: Adam Conrad
Author Date: 2013-05-09 17:50:52 UTC

Import patches-applied version 1.2.6-1ubuntu3.1 to applied/ubuntu/raring-proposed

Imported using git-ubuntu import.

Changelog parent: 4914af8df4b2a1041f7625a202dc34e2ecb5eb8c
Unapplied parent: f75f41869e4543a9f72c34ef579f00682520acfa

New changelog entries:
  * debian/patches/ubuntu-branding.patch: Move Ubuntu branding from
    the numerical version string to the long version (LP: #1174158)

Author: Adam Conrad
Author Date: 2013-05-09 17:50:52 UTC

Import patches-unapplied version 1.2.6-1ubuntu3.1 to ubuntu/raring-proposed

Imported using git-ubuntu import.

Changelog parent: 34a69e841dc2388a4fa4c16af25992855c52ba51

New changelog entries:
  * debian/patches/ubuntu-branding.patch: Move Ubuntu branding from
    the numerical version string to the long version (LP: #1174158)

Author: Chuck Short
Author Date: 2013-04-09 15:23:26 UTC

Import patches-unapplied version 1.2.6-1ubuntu3 to ubuntu/raring-proposed

Imported using git-ubuntu import.

Changelog parent: 6716a47e0f9f81b1dad56f9b7460a03c8ec3c04c

New changelog entries:
  * debian/patches/ubuntu-branding.patch: Add ubuntu branding
    to server_tokens.

Author: Chuck Short
Author Date: 2013-04-09 15:23:26 UTC

Import patches-applied version 1.2.6-1ubuntu3 to applied/ubuntu/raring-proposed

Imported using git-ubuntu import.

Changelog parent: 746ad6a2f01cd97944ad07cb153143ef558e577c
Unapplied parent: bc26d865a40c90e01aef32ee04cd02f8462abf56

New changelog entries:
  * debian/patches/ubuntu-branding.patch: Add ubuntu branding
    to server_tokens.

Author: Cyril Lavier
Author Date: 2013-02-13 13:32:44 UTC

Import patches-applied version 0.7.67-3+squeeze3 to applied/debian/squeeze

Imported using git-ubuntu import.

Changelog parent: 16646dc8d58da13d99377206ca9bab4ceee588f4
Unapplied parent: 678faad9cc9fef18c3cb103da93c1277112d1d26

New changelog entries:
  * debian/patches/CVE-2012-4929.diff:
    + Fixes the vulnerability to CRIME SSL attack. See: CVE-2012-4929 for more
      details.(Closes: #700426).

Author: Cyril Lavier
Author Date: 2013-02-13 13:32:44 UTC

Import patches-unapplied version 0.7.67-3+squeeze3 to debian/squeeze

Imported using git-ubuntu import.

Changelog parent: 155863638bd4902bf396470c6d677778d032d2d8

New changelog entries:
  * debian/patches/CVE-2012-4929.diff:
    + Fixes the vulnerability to CRIME SSL attack. See: CVE-2012-4929 for more
      details.(Closes: #700426).

Author: gregor herrmann
Author Date: 2012-08-04 16:13:10 UTC

Import patches-applied version 1.2.1-2.2 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 2d819012400847ecda3a0a18428c748273fac1be
Unapplied parent: e8b124549266041f587a27456f39962858b83520

New changelog entries:
  * Non-maintainer upload.
  * Fix "removes files that were installed by another package":
    don't remove directories that are owned by (and removed from) nginx-common
    from nginx-extras.postrm. This seems to have been the idea in commit e30a854
    ("Moved configuration purging to nginx-common.") except that it was added
    in nginx-common.postrm without being removed in nginx-extras.postrm.
    Remove nginx-extras.postrm since it's empty after this change.
    (Closes: #681758)

Author: gregor herrmann
Author Date: 2012-08-04 16:13:10 UTC

Import patches-unapplied version 1.2.1-2.2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 3885b9d8f2140abe48efe9a77c8595f3f1c14c10

New changelog entries:
  * Non-maintainer upload.
  * Fix "removes files that were installed by another package":
    don't remove directories that are owned by (and removed from) nginx-common
    from nginx-extras.postrm. This seems to have been the idea in commit e30a854
    ("Moved configuration purging to nginx-common.") except that it was added
    in nginx-common.postrm without being removed in nginx-extras.postrm.
    Remove nginx-extras.postrm since it's empty after this change.
    (Closes: #681758)

Author: Thomas Ward
Author Date: 2012-05-20 17:05:42 UTC

Import patches-applied version 0.8.54-4ubuntu0.1 to applied/ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: 82f71301b774ac11425dc9db1c88f72cc1604cd8
Unapplied parent: c8a8f2fa18b1db20b81df0e866d8d061879a96aa

New changelog entries:
  * Security update (closes LP: #956150):
    * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
    * Patch to fix 'Heap-based buffer overflow in compression-pointer
      processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-06-12 16:52:27 UTC

Import patches-applied version 1.0.5-1ubuntu0.1 to applied/ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: dd397de45fa1c7c482e5b353719ad643439d7e26
Unapplied parent: aa82e5d1c307636098781ac09cfe7d7a67b10b75

New changelog entries:
  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-06-12 16:37:49 UTC

Import patches-applied version 0.7.65-1ubuntu2.3 to applied/ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: ae9aa5c1004734fcb0c577300917066f7732f2e2
Unapplied parent: 96e2ea03d2e6333e8118267bccc8ef30fbc6c2bf

New changelog entries:
  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-05-20 17:05:42 UTC

Import patches-applied version 0.8.54-4ubuntu0.1 to applied/ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: 82f71301b774ac11425dc9db1c88f72cc1604cd8
Unapplied parent: c8a8f2fa18b1db20b81df0e866d8d061879a96aa

New changelog entries:
  * Security update (closes LP: #956150):
    * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
    * Patch to fix 'Heap-based buffer overflow in compression-pointer
      processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-06-12 16:52:27 UTC

Import patches-applied version 1.0.5-1ubuntu0.1 to applied/ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: dd397de45fa1c7c482e5b353719ad643439d7e26
Unapplied parent: aa82e5d1c307636098781ac09cfe7d7a67b10b75

New changelog entries:
  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-06-12 16:37:49 UTC

Import patches-unapplied version 0.7.65-1ubuntu2.3 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: 2949417b1975445ea732376272dc9da8a356ad70

New changelog entries:
  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-06-12 16:37:49 UTC

Import patches-unapplied version 0.7.65-1ubuntu2.3 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: 2949417b1975445ea732376272dc9da8a356ad70

New changelog entries:
  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-06-12 16:37:49 UTC

Import patches-unapplied version 0.7.65-1ubuntu2.3 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: 2949417b1975445ea732376272dc9da8a356ad70

New changelog entries:
  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-05-20 17:05:42 UTC

Import patches-unapplied version 0.8.54-4ubuntu0.1 to ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: 277ba9d948b0e17f36c2c08d81fd4a26efac1ece

New changelog entries:
  * Security update (closes LP: #956150):
    * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
    * Patch to fix 'Heap-based buffer overflow in compression-pointer
      processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-05-20 17:05:42 UTC

Import patches-unapplied version 0.8.54-4ubuntu0.1 to ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: 277ba9d948b0e17f36c2c08d81fd4a26efac1ece

New changelog entries:
  * Security update (closes LP: #956150):
    * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
    * Patch to fix 'Heap-based buffer overflow in compression-pointer
      processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-05-20 17:05:42 UTC

Import patches-unapplied version 0.8.54-4ubuntu0.1 to ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: 277ba9d948b0e17f36c2c08d81fd4a26efac1ece

New changelog entries:
  * Security update (closes LP: #956150):
    * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
    * Patch to fix 'Heap-based buffer overflow in compression-pointer
      processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-06-12 16:52:27 UTC

Import patches-unapplied version 1.0.5-1ubuntu0.1 to ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: cae773ba86503e5c2fd88b0ba0cb294810444f99

New changelog entries:
  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-06-12 16:52:27 UTC

Import patches-unapplied version 1.0.5-1ubuntu0.1 to ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: cae773ba86503e5c2fd88b0ba0cb294810444f99

New changelog entries:
  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-06-12 16:52:27 UTC

Import patches-unapplied version 1.0.5-1ubuntu0.1 to ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: cae773ba86503e5c2fd88b0ba0cb294810444f99

New changelog entries:
  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-06-12 16:37:49 UTC

Import patches-applied version 0.7.65-1ubuntu2.3 to applied/ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: ae9aa5c1004734fcb0c577300917066f7732f2e2
Unapplied parent: 96e2ea03d2e6333e8118267bccc8ef30fbc6c2bf

New changelog entries:
  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-06-12 16:37:49 UTC

Import patches-applied version 0.7.65-1ubuntu2.3 to applied/ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: ae9aa5c1004734fcb0c577300917066f7732f2e2
Unapplied parent: 96e2ea03d2e6333e8118267bccc8ef30fbc6c2bf

New changelog entries:
  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-06-12 16:52:27 UTC

Import patches-applied version 1.0.5-1ubuntu0.1 to applied/ubuntu/oneiric-security

Imported using git-ubuntu import.

Changelog parent: dd397de45fa1c7c482e5b353719ad643439d7e26
Unapplied parent: aa82e5d1c307636098781ac09cfe7d7a67b10b75

New changelog entries:
  * Security update (closes LP: #956150):
     * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
     * Patch to fix 'Heap-based buffer overflow in compression-pointer
       processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Thomas Ward
Author Date: 2012-05-20 17:05:42 UTC

Import patches-applied version 0.8.54-4ubuntu0.1 to applied/ubuntu/natty-security

Imported using git-ubuntu import.

Changelog parent: 82f71301b774ac11425dc9db1c88f72cc1604cd8
Unapplied parent: c8a8f2fa18b1db20b81df0e866d8d061879a96aa

New changelog entries:
  * Security update (closes LP: #956150):
    * Patch to fix 'Use-after-free vulnerability' (CVE-2012-1180).
    * Patch to fix 'Heap-based buffer overflow in compression-pointer
      processing in core/ngx_resolver.c' (CVE-2011-4315).

Author: Cyril Lavier
Author Date: 2012-04-13 11:28:59 UTC

Import patches-applied version 1.1.19-1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: a01b5ed9e00a239cd504a255734f6572f9981c37
Unapplied parent: 632e7332043ff2dc7f9ac05ce2a9731eac5892ba

New changelog entries:
  [Cyril Lavier]
  * New upstream release.
    + Fixed a buffer overflow in the ngx_http_mp4_module. See: CVE-2012-2089
      for more details.
  * debian/copyright:
    + Updated licenses.
  * debian/nginx-extras.postinst, debian/nginx-full.postinst,
    debian/nginx-light.postinst, debian/nginx-naxsi.postinst:
    + Removing the debug markers. (Closes: #667894)
  * debian/control, debian/rules, debian/copyright,
    debian/modules/nginx-dav-ext-module:
    + Added nginx-dav-ext-module in full and extras.
  * debian/modules/naxsi:
    + Updated naxsi to the SVN snapshot (r280) to fix the licence issue with
      OpenSSL.
  [Kartik Mistry]
  * Misc cleanups in debian/control, debian/copyright.

Author: Cyril Lavier
Author Date: 2012-04-13 11:28:59 UTC

Import patches-unapplied version 1.1.19-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 08a75c7272ecf2d29f69f14ea746072d23a15581

New changelog entries:
  [Cyril Lavier]
  * New upstream release.
    + Fixed a buffer overflow in the ngx_http_mp4_module. See: CVE-2012-2089
      for more details.
  * debian/copyright:
    + Updated licenses.
  * debian/nginx-extras.postinst, debian/nginx-full.postinst,
    debian/nginx-light.postinst, debian/nginx-naxsi.postinst:
    + Removing the debug markers. (Closes: #667894)
  * debian/control, debian/rules, debian/copyright,
    debian/modules/nginx-dav-ext-module:
    + Added nginx-dav-ext-module in full and extras.
  * debian/modules/naxsi:
    + Updated naxsi to the SVN snapshot (r280) to fix the licence issue with
      OpenSSL.
  [Kartik Mistry]
  * Misc cleanups in debian/control, debian/copyright.

Author: Mahyuddin Susanto
Author Date: 2012-01-12 07:45:20 UTC

Import patches-unapplied version 0.7.65-1ubuntu2.2 to ubuntu/lucid-proposed

Imported using git-ubuntu import.

Changelog parent: cf36b23a580cc57814b1b5e9277a53b5b5de0795

New changelog entries:
  * debian/patches/LP-902223.patch: Patch to fix reloading
    IPv6 addresses, patch derived from Debian. (LP: #902223)

Author: Mahyuddin Susanto
Author Date: 2012-01-12 07:45:20 UTC

Import patches-applied version 0.7.65-1ubuntu2.2 to applied/ubuntu/lucid-proposed

Imported using git-ubuntu import.

Changelog parent: e0fd0d5dda36ecdca7f54e4b4d2dab55bcb36301
Unapplied parent: a2c3cd2e864adb3a0b1c440122f0bbb6702cd919

New changelog entries:
  * debian/patches/LP-902223.patch: Patch to fix reloading
    IPv6 addresses, patch derived from Debian. (LP: #902223)

Author: Neal Poole
Author Date: 2011-07-13 02:31:10 UTC

Import patches-unapplied version 0.6.35-0ubuntu1.1~hardy1.1 to ubuntu/hardy-backports

Imported using git-ubuntu import.

Changelog parent: 70d6169fa434d1932e90872a054e6c240966d5c8

New changelog entries:
  * SECURITY UPDATE:
      - Merge r3528 from upstream repository to mitigate
        potential null byte vulnerability (LP: #803720)

Author: Neal Poole
Author Date: 2011-07-13 02:31:10 UTC

Import patches-applied version 0.6.35-0ubuntu1.1~hardy1.1 to applied/ubuntu/hardy-backports

Imported using git-ubuntu import.

Changelog parent: 202e4291485bc0034cbc852b04a176e0ecd56156
Unapplied parent: 6a0c567c64b093e63fb85d47b9e34c9a9b2abb90

New changelog entries:
  * SECURITY UPDATE:
      - Merge r3528 from upstream repository to mitigate
        potential null byte vulnerability (LP: #803720)

Author: Kartik Mistry
Author Date: 2011-07-20 04:46:45 UTC

Import patches-unapplied version 1.0.5-1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 753a9b27dd15a1b5db147dd63ac352c62b255e2b

New changelog entries:
  * New upstream release
  * debian/control:
    + nginx Depends on either nginx-full or nginx-light, Thanks to
      Hans van Kranenburg <hans.van.kranenburg@mendix.com> (Closes: #633879)
  * debian/copyright:
    + Updated to latest DEP-5 specification
    + Added some missing copyrights for modules
    + Updated copyright years

Author: Kartik Mistry
Author Date: 2011-07-20 04:46:45 UTC

Import patches-applied version 1.0.5-1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 2ba40aa4b205342376e4325bc3b4bdfb9d7ed560
Unapplied parent: d8ae116d8564aed1ff801e04cc513da06ee72ab0

New changelog entries:
  * New upstream release
  * debian/control:
    + nginx Depends on either nginx-full or nginx-light, Thanks to
      Hans van Kranenburg <hans.van.kranenburg@mendix.com> (Closes: #633879)
  * debian/copyright:
    + Updated to latest DEP-5 specification
    + Added some missing copyrights for modules
    + Updated copyright years

Author: Neal Poole
Author Date: 2011-07-13 01:41:00 UTC

Import patches-unapplied version 0.5.33-1ubuntu0.2 to ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: a9b627ea2682e656c5ae86983cea0880a505d01b

New changelog entries:
  * SECURITY UPDATE:
      - Merge r3528 from upstream repository to mitigate
        potential null byte vulnerability (LP: #803720)

Author: Neal Poole
Author Date: 2011-07-13 01:41:00 UTC

Import patches-applied version 0.5.33-1ubuntu0.2 to applied/ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: 0396a1fdb932f7e8271cccf8b476174825ac3a64
Unapplied parent: f7237df706edfe4ae2d3d8233f16f1e1253a0012

New changelog entries:
  * SECURITY UPDATE:
      - Merge r3528 from upstream repository to mitigate
        potential null byte vulnerability (LP: #803720)