projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3a4c111) | patch
nginx: security bump to 1.15.6
authorPeter Korsgaard <peter@korsgaard.com>
Fri, 9 Nov 2018 10:08:19 +0000 (11:08 +0100)
committerPeter Korsgaard <peter@korsgaard.com>
Fri, 9 Nov 2018 13:05:48 +0000 (14:05 +0100)
commitc2f5b3a3a866859528747edc191fb9c241343e88
tree5a9a60411934ca631af7e0615c279eb83cd3cd12tree
parent3a4c111b1f359e2ba50e31ef1246e48456a391decommit | diff
nginx: security bump to 1.15.6

Fixes the following security issues:

CVE-2018-16843: Excessive memory usage in HTTP/2

CVE-2018-16844: Excessive CPU usage in HTTP/2

CVE-2018-16845: Memory disclosure in the ngx_http_mp4_module

Refreshed patch 0004 + 0007 as they no longer applied cleanly.

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/nginx/0004-auto-lib-libxslt-conf-use-pkg-config.patch diff | blob | history
package/nginx/0007-auto-lib-libgd-conf-use-pkg-config.patch diff | blob | history
package/nginx/nginx.hash diff | blob | history
package/nginx/nginx.mk diff | blob | history