-
nginx (1.16.1-0ubuntu2.1) eoan-security; urgency=medium
* SECURITY UPDATE: request smuggling via error_page
- debian/patches/CVE-2019-20372.patch: discard request body when
redirecting to a URL via error_page in
src/http/ngx_http_special_response.c.
- CVE-2019-20372
-- Marc Deslauriers <email address hidden> Fri, 10 Jan 2020 14:16:29 -0500
-
nginx (1.16.1-0ubuntu2) eoan; urgency=medium
* d/conf/sites-available/default: Update PHP referred to in the
example in the default configuration to PHP 7.2.
(LP: #1831748)
-- Thomas Ward <email address hidden> Thu, 15 Aug 2019 12:01:39 -0400
-
nginx (1.16.1-0ubuntu1) eoan; urgency=medium
* New upstream release (1.16.1) - full changelog available from
http://nginx.org/en/CHANGES-1.16
* This patch contains security patches only.
* Security content in this version:
- When using HTTP/2 a client might cause excessive memory consumption
and CPU usage (CVE-2019-9511. CVE-2019-9513, CVE-2019-9516)
-- Thomas Ward <email address hidden> Tue, 13 Aug 2019 13:08:03 -0400
-
nginx (1.16.0-0ubuntu2) eoan; urgency=medium
* d/patches/nginx-fix-pidfile.patch: Fix NGINX PIDfile handling to avoid
SystemD race condition - thanks to Tj for the patch. (LP: #1581864)
-- Thomas Ward <email address hidden> Tue, 04 Jun 2019 11:43:30 -0400
-
nginx (1.16.0-0ubuntu1) eoan; urgency=medium
* New upstream release (1.16.0) - full changelog available from
http://nginx.org/en/CHANGES
* Remaining Ubuntu-specific changes:
- debian/patches/ubuntu-branding.patch: add Ubuntu branding (refreshed)
- d/{control,rules,nginx-core.*}: add new binary package for main,
nginx-core, which contains only source-tarball-included modules
and no third-party modules.
- debian/tests/control: add nginx-core test.
- debian/apport/source_nginx.py: Add apport hooks for additional bug
information gathering.
- debian/nginx-common.install: Add install rule for apport hooks.
- d/nginx-{core,light,full,extras}.postinst: Add checks for whether
port 80 is in use or not to determine whether or not to attempt
starting of the NGINX service during install/upgrade
- d/control: Add dependencies to nginx-{core,light,full,extras} on
`iproute2` as the postinst scripts now use `ss` to determine if
Port 80 is open or not.
- d/rules: Enable --with-compat build option for all nginx package
flavors
- d/{control,rules,copyright,modules/http-geoip2*}: Add GeoIP2 third party
module to nginx-full and nginx-extras
-- Thomas Ward <email address hidden> Mon, 29 Apr 2019 12:31:39 -0400
-
nginx (1.15.12-0ubuntu1) eoan; urgency=medium
* New upstream release (1.15.12) - full changelog available from
http://nginx.org/en/CHANGES
* Remaining Ubuntu-specific changes:
- debian/patches/ubuntu-branding.patch: add Ubuntu branding (refreshed)
- d/{control,rules,nginx-core.*}: add new binary package for main,
nginx-core, which contains only source-tarball-included modules
and no third-party modules.
- debian/tests/control: add nginx-core test.
- debian/apport/source_nginx.py: Add apport hooks for additional bug
information gathering.
- debian/nginx-common.install: Add install rule for apport hooks.
- d/nginx-{core,light,full,extras}.postinst: Add checks for whether
port 80 is in use or not to determine whether or not to attempt
starting of the NGINX service during install/upgrade
- d/control: Add dependencies to nginx-{core,light,full,extras} on
`iproute2` as the postinst scripts now use `ss` to determine if
Port 80 is open or not.
- d/rules: Enable --with-compat build option for all nginx package
flavors
* Add GeoIP2 third party module to nginx-full and nginx-extras
(LP: #1825895). The following is the files list for this:
- d/{control,rules}: Add libnginx-mod-http-geoip2 and corresponding build
rules.
- d/modules/http-geoip2{,/*}: Add geoip2 module from third party git.
- d/copyright: Add relevant copyright lines for GeoIP2 module.
-- Thomas Ward <email address hidden> Mon, 22 Apr 2019 17:59:46 -0400
-
nginx (1.15.9-0ubuntu1) disco; urgency=medium
* New upstream release (1.15.9) - full changelog available from
http://nginx.org/en/CHANGES (LP: #1817750)
* Remaining Ubuntu-specific changes:
- debian/patches/ubuntu-branding.patch: add Ubuntu branding (refreshed)
- d/{control,rules,nginx-core.*}: add new binary package for main,
nginx-core, which contains only source-tarball-included modules
and no third-party modules.
- debian/tests/control: add nginx-core test.
- debian/apport/source_nginx.py: Add apport hooks for additional bug
information gathering.
- debian/nginx-common.install: Add install rule for apport hooks.
- d/nginx-{core,light,full,extras}.postinst: Add checks for whether
port 80 is in use or not to determine whether or not to attempt
starting of the NGINX service during install/upgrade
- d/control: Add dependencies to nginx-{core,light,full,extras} on
`iproute2` as the postinst scripts now use `ss` to determine if
Port 80 is open or not.
- d/rules: Enable --with-compat build option for all nginx package
flavors
-- Thomas Ward <email address hidden> Tue, 26 Feb 2019 11:15:07 -0500