Changelog
nginx (1.10.2-1) unstable; urgency=high
[ Christos Trochalakis ]
* New upstream release.
* debian/nginx-common.postinst:
+ CVE-2016-1247: Secure log file handling (owner & permissions)
against privilege escalation attacks. /var/log/nginx is now owned
by root:adm. Thanks ro Dawid Golunski for the report.
Changing /var/log/nginx permissions effectively reopens #701112,
since log files can be world-readable. This is a trade-off until
a better log opening solution is implemented upstream (trac:376).
(Closes: #842295)
* debian/control:
+ Version depend on lsb-base (>= 3.0-6).
Fixes lintian init.d-script-needs-depends-on-lsb-base.
* debian/nginx-*.lintian-overrides:
+ Drop unused spelling-error-in-binary override.
[ Michael Lustfield ]
* debian/conf/sites-available/default:
+ Updated PHP sample configuration block. (Closes: #841230)
-- Christos Trochalakis <email address hidden> Sat, 29 Oct 2016 08:45:09 +0300