ubuntu/+source/nginx:ubuntu/bionic-security

Last commit made on 2019-08-20
Get this branch:
git clone -b ubuntu/bionic-security https://git.launchpad.net/ubuntu/+source/nginx
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/bionic-security
Repository:
lp:ubuntu/+source/nginx

Recent commits

3a67d20... by Marc Deslauriers on 2019-08-20

Import patches-unapplied version 1.14.0-0ubuntu1.6 to ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: 32901f79fc76a1c3f3207823c8e64029eaae8dec

New changelog entries:
  * No change rebuild in -security pocket now that OpenSSL 1.1.1 is
    available.

32901f7... by Marc Deslauriers on 2019-08-16

Import patches-unapplied version 1.14.0-0ubuntu1.5 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: 6e42ad0031f2aeb1b683f49d7c1e815f4f4fc59d

New changelog entries:
  * No change rebuild for bionic outside of security pocket to pick up
    OpenSSL 1.1.1. (LP: #1840404)

6e42ad0... by Marc Deslauriers on 2019-08-14

Import patches-unapplied version 1.14.0-0ubuntu1.4 to ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: 5beb0665446d81a67bbf4c4cd5f1f3600997db23

New changelog entries:
  * SECURITY UPDATE: HTTP/2 Data Dribble issue
    - debian/patches/CVE-2019-9511.patch: limited number of DATA frames in
      src/http/v2/ngx_http_v2.c, src/http/v2/ngx_http_v2.h,
      src/http/v2/ngx_http_v2_filter_module.c.
    - CVE-2019-9511
  * SECURITY UPDATE: HTTP/2 Resource Loop / Priority Shuffling issue
    - debian/patches/CVE-2019-9513.patch: limited number of PRIORITY frames
      in src/http/v2/ngx_http_v2.c, src/http/v2/ngx_http_v2.h.
    - CVE-2019-9513
  * SECURITY UPDATE: HTTP/2 0-Length Headers Leak issue
    - debian/patches/CVE-2019-9516.patch: reject zero length headers with
      PROTOCOL_ERROR in src/http/v2/ngx_http_v2.c.
    - CVE-2019-9516

5beb066... by Thomas Ward on 2019-07-12

Import patches-unapplied version 1.14.0-0ubuntu1.3 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: 5dbef63792e8f2e615a7d478fa9744abd5a30575

New changelog entries:
  * No changes rebuild (to build against OpenSSL 1.1.1 in Bionic)
    (LP: #1836366)

5dbef63... by Marc Deslauriers on 2018-11-06

Import patches-unapplied version 1.14.0-0ubuntu1.2 to ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: d84643515ea4b92a3de14fae459352023db0b0b5

New changelog entries:
  * SECURITY UPDATE: excessive memory consumption in HTTP/2 implementation
    - debian/patches/CVE-2018-16843.patch: add flood detection in
      src/http/v2/ngx_http_v2.c, src/http/v2/ngx_http_v2.h.
    - CVE-2018-16843
  * SECURITY UPDATE: excessive CPU usage in HTTP/2 implementation
    - debian/patches/CVE-2018-16844.patch: limit the number of idle state
      switches in src/http/v2/ngx_http_v2.c, src/http/v2/ngx_http_v2.h.
    - CVE-2018-16844
  * SECURITY UPDATE: infinite loop in ngx_http_mp4_module
    - debian/patches/CVE-2018-16845.patch: fixed reading 64-bit atoms in
      src/http/modules/ngx_http_mp4_module.c.
    - CVE-2018-16845

d846435... by Andres Rodriguez on 2018-08-20

Import patches-unapplied version 1.14.0-0ubuntu1.1 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: 2b287f4c2b15b0cb8eaf3e7d0d02d47d152073bd

New changelog entries:
  * Stable Release Update. Do not attempt to start nginx if other daemon
    is binding to port 80, to prevent install failure (LP: #1782226):
    - d/nginx{core,light,full,extras}.postinst: Add checks for whether
      port 80 is in use or not to determine whether or not to attempt
      starting of the NGINX service during install/upgrade.
    - d/control: Add dependencies to nginx-{core,light,full,extras} on
      `iproute2` as the postinst scripts now use `ss` to determine if
      Port 80 is open or not.

2b287f4... by Thomas Ward on 2018-04-17

Import patches-unapplied version 1.14.0-0ubuntu1 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: aeda8df039bdee2c510a25c20beacfd8e9862cdf

New changelog entries:
  * New upstream stable release (1.14.0)
  * Upstream changelogs can be found at http://nginx.org/en/CHANGES-1.14
  * There are no functional changes or new features in this release,
    and the only change is a version number change.
  * Remaining Ubuntu-specific changes:
    - debian/patches/ubuntu-branding.patch: add Ubuntu branding (refreshed)
    - d/{control,rules,nginx-core.*}: add new binary package for main,
      nginx-core, which contains only source-tarball-included modules
      and no third-party modules.
    - debian/tests/control: add nginx-core test.
    - debian/apport/source_nginx.py: Add apport hooks for additional bug
      information gathering.
    - debian/nginx-common.install: Add install rule for apport hooks.

aeda8df... by Thomas Ward on 2018-04-16

Import patches-unapplied version 1.13.12-0ubuntu1 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: 6b27debd35f6e771ea3ec31558a8797c46cc0be5

New changelog entries:
  * New upstream releases (1.13.11, 1.13.12)
  * Upstream changelogs can be found at https://nginx.org/en/CHANGES
  * Remaining Ubuntu-specific changes:
    - debian/patches/ubuntu-branding.patch: add Ubuntu branding (refreshed)
    - d/{control,rules,nginx-core.*}: add new binary package for main,
      nginx-core, which contains only source-tarball-included modules
      and no third-party modules.
    - debian/tests/control: add nginx-core test.
    - debian/apport/source_nginx.py: Add apport hooks for additional bug
      information gathering.
    - debian/nginx-common.install: Add install rule for apport hooks.

6b27deb... by Nish Aravamudan on 2018-04-05

Import patches-unapplied version 1.13.10-1ubuntu1 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Upload parent: 8efeac2fb33a7399d3979dc9e6ab1cd3515213f3

8efeac2... by Nish Aravamudan on 2018-04-05

update-maintainer