projects / buildroot.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 2953077)
package/nginx: security bump to version 1.16.1
authorPeter Korsgaard <peter@korsgaard.com>
Fri, 23 Aug 2019 10:21:32 +0000 (12:21 +0200)
committerPeter Korsgaard <peter@korsgaard.com>
Sun, 25 Aug 2019 06:48:20 +0000 (08:48 +0200)
Fixes the following security issues:

       Security: when using HTTP/2 a client might cause excessive memory
       consumption and CPU usage (CVE-2019-9511, CVE-2019-9513,
       CVE-2019-9516).

For details, see the advisory:
https://mailman.nginx.org/pipermail/nginx-announce/2019/000249.html

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/nginx/nginx.hash patch | blob | history
package/nginx/nginx.mk patch | blob | history

diff --git a/package/nginx/nginx.hash b/package/nginx/nginx.hash
index c322a64db201b28a8fbcdbc009f4e99e8863577f..4df7906eeac71fb3af73cb10cc210406ace854f4 100644 (file)
--- a/package/nginx/nginx.hash
+++ b/package/nginx/nginx.hash
@@ -1,4 +1,4 @@
 # Locally calculated after checking pgp signature
-sha256 4fd376bad78797e7f18094a00f0f1088259326436b537eb5af69b01be2ca1345        nginx-1.16.0.tar.gz
+sha256 f11c2a6dd1d3515736f0324857957db2de98be862461b5a542a3ac6188dbe32b        nginx-1.16.1.tar.gz
 # License files, locally calculated
 sha256 28ad30e2f64bd89ac1287b4606906bb99ed04d9f4e13fb6564a0be9c8a23f509        LICENSE
diff --git a/package/nginx/nginx.mk b/package/nginx/nginx.mk
index eed7602570e9d4dc05d5f31471830374b3a341ec..08adcaec51991bbbbb9061298cfa70a0cbd3894f 100644 (file)
--- a/package/nginx/nginx.mk
+++ b/package/nginx/nginx.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-NGINX_VERSION = 1.16.0
+NGINX_VERSION = 1.16.1
 NGINX_SITE = http://nginx.org/download
 NGINX_LICENSE = BSD-2-Clause
 NGINX_LICENSE_FILES = LICENSE