[ubuntu/saucy-security] nginx 1.4.1-3ubuntu1.3 (Accepted)

Seth Arnold seth.arnold at canonical.com
Thu Mar 20 22:05:43 UTC 2014

nginx (1.4.1-3ubuntu1.3) saucy-security; urgency=low

  * SECURITY UPDATE: SPDY Heap Buffer Overflow Vulnerabilty (LP: #1294280)
    - debian/patches/cve-2014-0133.patch: modify src/http/ngx_http_spdy.c to
      fix a heap buffer overflow vulnerability in the SPDY module by using
      a specially crafted request.
    - CVE-2014-0133

nginx (1.4.1-3ubuntu1.2) saucy; urgency=low

  * Apply upstream changes to fix a segmentation fault in the third-party
    ngx_auth_pam module in nginx-full and nginx-extras. (LP: #1264674)

Date: 2014-03-19 05:32:11.581542+00:00
Changed-By: Thomas Ward <teward at trekweb.org>
Signed-By: Seth Arnold <seth.arnold at canonical.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Saucy-changes mailing list