Mercurial > hg > nginx-site
comparison text/en/CHANGES @ 2272:3fa4584907b8
nginx-1.15.6, nginx-1.14.1
| author | Maxim Dounin <mdounin@mdounin.ru> |
|---|---|
| date | Tue, 06 Nov 2018 17:51:30 +0300 |
| parents | 8cc7642ba82e |
| children | 83f1b1e6d8a9 |
comparison
equal
deleted
inserted
replaced
| 2271:34a1901e663d | 2272:3fa4584907b8 |
|---|---|
| 1 | |
| 2 Changes with nginx 1.15.6 06 Nov 2018 | |
| 3 | |
| 4 *) Security: when using HTTP/2 a client might cause excessive memory | |
| 5 consumption (CVE-2018-16843) and CPU usage (CVE-2018-16844). | |
| 6 | |
| 7 *) Security: processing of a specially crafted mp4 file with the | |
| 8 ngx_http_mp4_module might result in worker process memory disclosure | |
| 9 (CVE-2018-16845). | |
| 10 | |
| 11 *) Feature: the "proxy_socket_keepalive", "fastcgi_socket_keepalive", | |
| 12 "grpc_socket_keepalive", "memcached_socket_keepalive", | |
| 13 "scgi_socket_keepalive", and "uwsgi_socket_keepalive" directives. | |
| 14 | |
| 15 *) Bugfix: if nginx was built with OpenSSL 1.1.0 and used with OpenSSL | |
| 16 1.1.1, the TLS 1.3 protocol was always enabled. | |
| 17 | |
| 18 *) Bugfix: working with gRPC backends might result in excessive memory | |
| 19 consumption. | |
| 20 | |
| 1 | 21 |
| 2 Changes with nginx 1.15.5 02 Oct 2018 | 22 Changes with nginx 1.15.5 02 Oct 2018 |
| 3 | 23 |
| 4 *) Bugfix: a segmentation fault might occur in a worker process when | 24 *) Bugfix: a segmentation fault might occur in a worker process when |
| 5 using OpenSSL 1.1.0h or newer; the bug had appeared in 1.15.4. | 25 using OpenSSL 1.1.0h or newer; the bug had appeared in 1.15.4. |