ubuntu/+source/nginx:applied/ubuntu/xenial-devel

Last commit made on 2020-01-13
Get this branch:
git clone -b applied/ubuntu/xenial-devel https://git.launchpad.net/ubuntu/+source/nginx
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/xenial-devel
Repository:
lp:ubuntu/+source/nginx

Recent commits

a6fc65c... by Marc Deslauriers on 2020-01-10

Import patches-applied version 1.10.3-0ubuntu0.16.04.5 to applied/ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 7ba032c881a9dd20e9150fd8ca34c573d44f2b6b
Unapplied parent: 2322168300e1beafbc293da2fc8e679024620d3c

New changelog entries:
  * SECURITY UPDATE: request smuggling via error_page
    - debian/patches/CVE-2019-20372.patch: discard request body when
      redirecting to a URL via error_page in
      src/http/ngx_http_special_response.c.
    - CVE-2019-20372

2322168... by Marc Deslauriers on 2020-01-10

[PATCH] Discard request body when redirecting to a URL via

Gbp-Pq: CVE-2019-20372.patch.

433d9fe... by Marc Deslauriers on 2020-01-10

[PATCH] HTTP/2: reject zero length headers with PROTOCOL_ERROR.

Gbp-Pq: CVE-2019-9516.patch.

fbff152... by Marc Deslauriers on 2020-01-10

[PATCH] HTTP/2: limited number of PRIORITY frames.

Gbp-Pq: CVE-2019-9513.patch.

dfcb1b8... by Marc Deslauriers on 2020-01-10

[PATCH] HTTP/2: limited number of DATA frames.

Gbp-Pq: CVE-2019-9511.patch.

d0fd410... by Marc Deslauriers on 2020-01-10

CVE-2018-16845.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2018-16845.patch.

ca621d4... by Marc Deslauriers on 2020-01-10

CVE-2018-16844.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2018-16844.patch.

932167c... by Marc Deslauriers on 2020-01-10

CVE-2018-16844-pre.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2018-16844-pre.patch.

1d5956f... by Marc Deslauriers on 2020-01-10

CVE-2018-16843.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2018-16843.patch.

bfa0501... by Marc Deslauriers on 2020-01-10

Fix integer overflow in the range filter

Gbp-Pq: CVE-2017-7529.patch.