[Bug 1527709] [NEW] Update Xenial nginx to 1.9.9

Thomas Ward teward at trekweb.org
Fri Dec 18 18:23:32 UTC 2015 

Public bug reported:

NGINX in Debian had 1.9.6, which was the subject of a recent merge,
which successfully landed in Xenial.

While there is a Perl transition in progress, and any additional NGINX
versions will not immediately be available, it should still be
considered the usefulness of updating the nginx version to 1.9.9.
Typically, this would be done by a merge from Debian.  However, Debian
has not released an updated NGINX package, and remains at 1.9.6, even in
the Debian git repository (with only two additional changes not yet
included as it's not packaged).

I would like to see an Ubuntu-specific upload that would have 1.9.9
available for the Xenial repositories, with the potential for a merge
later from Debian.

------

Additional considerations during update consideration: 
 * Security Team Mandate: disable HTTP/2 in the package until further notice - This was already incorporated in the 1.9.6 merge, and the 1.9.9 upload should not affect this as the disablement of those features will still be in place.

------

Below are the upstream changelogs (http://nginx.org/en/CHANGES) between
1.9.6 and 1.9.7.  Additional features are great, however there are also
additional bugs fixed, expecially when proxying data via nginx (by
proxy_pass and other directives):

Changes with nginx 1.9.9                                         09 Dec
2015

    *) Bugfix: proxying to unix domain sockets did not work when using
       variables; the bug had appeared in 1.9.8.


Changes with nginx 1.9.8                                         08 Dec 2015

    *) Feature: pwritev() support.

    *) Feature: the "include" directive inside the "upstream" block.

    *) Feature: the ngx_http_slice_module.

    *) Bugfix: a segmentation fault might occur in a worker process when
       using LibreSSL; the bug had appeared in 1.9.6.

    *) Bugfix: nginx could not be built on OS X in some cases.


Changes with nginx 1.9.7                                         17 Nov 2015

    *) Feature: the "nohostname" parameter of logging to syslog.

    *) Feature: the "proxy_cache_convert_head" directive.

    *) Feature: the $realip_remote_addr variable in the
       ngx_http_realip_module.

    *) Bugfix: the "expires" directive might not work when using
variables.

    *) Bugfix: a segmentation fault might occur in a worker process when
       using HTTP/2; the bug had appeared in 1.9.6.

    *) Bugfix: if nginx was built with the ngx_http_v2_module it was
       possible to use the HTTP/2 protocol even if the "http2" parameter of
       the "listen" directive was not specified.

    *) Bugfix: in the ngx_http_v2_module.

** Affects: nginx (Ubuntu)
     Importance: Wishlist
     Assignee: Thomas Ward (teward)
         Status: In Progress

-- 
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to nginx in Ubuntu.
https://bugs.launchpad.net/bugs/1527709

Title:
  Update Xenial nginx to 1.9.9

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/nginx/+bug/1527709/+subscriptions

More information about the Ubuntu-server-bugs mailing list