lp:ubuntu/raring-security/nginx
- Get this branch:
- bzr branch lp:ubuntu/raring-security/nginx
Branch merges
- Roger Mbiama Assogo (community): Approve
-
Diff: 6045 lines (+5938/-7)11 files modified.pc/applied-patches (+2/-0)
.pc/cve-2013-2070.patch/src/http/modules/ngx_http_proxy_module.c (+4038/-0)
.pc/cve-2013-4547.patch/src/http/ngx_http_parse.c (+1820/-0)
debian/changelog (+24/-0)
debian/patches/cve-2013-2070.patch (+18/-0)
debian/patches/cve-2013-4547.patch (+21/-0)
debian/patches/series (+2/-0)
debian/patches/ubuntu-branding.patch (+5/-5)
src/core/nginx.h (+2/-2)
src/http/modules/ngx_http_proxy_module.c (+4/-0)
src/http/ngx_http_parse.c (+2/-0)
Branch information
Recent revisions
- 64. By Thomas Ward
-
* SECURITY UPDATE: ACL bypass via space character (LP: #1253691)
- debian/patches/ cve-2013- 4547.patch: modify src/http/ ngx_http_ parse.c
to account for a space character, fixing an issue which could result in
security restrictions being bypassed
- CVE-2013-4547 - 63. By Thomas Ward
-
* Security update (closes LP: #1182586):
* Patch to fix a buffer overflow vulnerability (CVE-2013-2070) - 61. By Thomas Ward
-
* debian/
conf/sites- available/ default:
* Modify default site configuration file to correct a typo
that prevented out-of-the-box usability (LP: #1162177) - 60. By Thomas Ward
-
* debian/
conf/sites- available/ default:
* Modify default site default configuration file to bind to IPv6
only for IPv6 default listen statement (LP: #1132678) - 59. By Kartik Mistry
-
[ Kartik Mistry ]
* New upstream release.
* debian/nginx-common. nginx.init:
+ Used log_*_msg instead of echo for better init messages.
+ Added patch to check start-stop-daemon exit status, Thanks to
Sergey B Kirpichev <email address hidden> (Closes: #695374).
* debian/po/ja.po:
+ Added new Japanese translation. Thanks to victory <email address hidden>
(Closes: #692481).
* debian/po/pt_BR.po:
+ Added new Brazilian Portuguese translation. Thanks to
Adriano Rafael Gomes <email address hidden> (Closes: #692481).[ Cyril Lavier ]
* debian/rules
+ Added RealIP module in nginx-naxsi (Closes: #693302).
* debian/modules/ nginx-cache- purge/
+ Updated nginx-cache-purge module with the 2.0 version.
* debian/modules/ nginx-lua/
+ Updated nginx-lua module with the 0.7.8 version.
* debian/modules/ nginx-echo/
+ Updated the nginx-echo module with the 0.41 version.
* debian/modules/ headers- more-nginx- module/
+ Updated the Headers-more module with the 0.19 version.
* debian/modules/ README. Modules- versions
+ Updated the current version of modules following the updates.[ Michael Lustfield ]
* debian/conf/sites- available/ default
+ Uncommented listen lines to make server block default. - 58. By Kartik Mistry
-
* debian/
conf/nginx. conf:
+ Fixed pid path to /run/nginx.pid in config.
* debian/po/*.po, debian/nginx-naxsi- ui.templates, debian/ po/templates. pot:
+ Fixed ^M characters in template file. Thanks to Christian Perrier
<email address hidden> for help (Closes: #692191, #692335) - 57. By Kartik Mistry
-
[ Michael Lustfield ]
* debian/nginx-common. nginx.init
+ Added --retry to start-stop-daemon. (Closes: #682360)
+ Added $named to Required-Start/Stop. (Closes: #679879)
+ Added some other modifications after testing. (LP: #1033856)
* debian/rules:
+ Added -DFORTIFY_SOURCE=2 -fstack-protector to build flags.
(Closes: #680712)
* debian/nginx-common. install:
+ Moved default docs to /usr/share/nginx/html. (Closes: #1031515)
* debian/rules:
+ Set prefix to /usr/share/nginx.
* debian/po/fr.po
+ Updated French translation file. (Closes: #679601)
* debian/logrotate:
+ Removed semicolon after an fi statement. (Closes: #683870)
* debian/copyright:
+ Removed trailing slash from File: fields.
* Changed /var/run to /run in multiple files. (LP: #1050516)
* debian/nginx-common. dirs:
+ Added /run to .dirs to avoid conflicts with backports. (LP: #1072641)
* debian/nginx-* .postinst:
+ Added sites-enabled/available directory checks. (Closes: #688410)
- Thanks Andreas Marschke <email address hidden>
+ Moved the symlink creation to nginx-common.
* Updated debconf templates.
* conf/sites-available/ default:
+ Updated root to point at /usr/share/nginx/html instead of www. [ Kartik Mistry ]
* Acknowledged NMUs (Closes: #681758, #681381)
* New upstream release (Closes: #683704)
* debian/po/*.po:
+ Removed ^M characters from headers.
+ Fixed all files with recent unneeded template change. - 56. By gregor herrmann
-
* Non-maintainer upload.
* Fix "removes files that were installed by another package":
don't remove directories that are owned by (and removed from) nginx-common
from nginx-extras.postrm. This seems to have been the idea in commit e30a854
("Moved configuration purging to nginx-common.") except that it was added
in nginx-common.postrm without being removed in nginx-extras.postrm.
Remove nginx-extras.postrm since it's empty after this change.
(Closes: #681758) - 55. By Cyril Lavier
-
[Cyril Lavier]
* Urgency set to medium, security bug in naxsi module, fix via upstream.
* debian/modules/ naxsi:
+ Updated naxsi module to version 0.46-1 fixing the following security
issue : potential file disclosure in nx_extract.
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/saucy/nginx