[Bug 1663937] Re: [SRU] Please update nginx in Xenial and Yakkety to 1.10.3

Sat Feb 11 23:11:10 UTC 2017

I'm unsubscribing ubuntu-sponsors since there's nothing to sponsor here.
(Subscribing ubuntu-sponsors is usually done when you don't have upload
rights for the proposed change, but that's not the case here since you
already uploaded the updates.)

Also, the SRU team will subscribe themselves when they accept the SRU;
you don't need to do that.

https://wiki.ubuntu.com/StableReleaseUpdates#Procedure
https://wiki.ubuntu.com/StableReleaseUpdates#Reviewing_procedure_and_tools

** Changed in: nginx (Ubuntu)
       Status: Invalid => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Sponsors Team, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1663937

Title:
  [SRU] Please update nginx in Xenial and Yakkety to 1.10.3

Status in nginx package in Ubuntu:
  Fix Released
Status in nginx source package in Xenial:
  Triaged
Status in nginx source package in Yakkety:
  Triaged

Bug description:
  [Impact]

  Two releases are affected: Xenial and Yakkety.

  There are a bunch of bugfixes in 1.10.3, including HTTP/2 fixes, that
  should be included in Ubuntu.  This is detailed here in the upstream
  changelog from nginx:

  Changes with nginx 1.10.3 (31 Jan 2017)

      *) Bugfix: in the "add_after_body" directive when used with the
         "sub_filter" directive.

      *) Bugfix: unix domain listen sockets might not be inherited during
         binary upgrade on Linux.

      *) Bugfix: graceful shutdown of old worker processes might require
         infinite time when using HTTP/2.

      *) Bugfix: when using HTTP/2 and the "limit_req" or "auth_request"
         directives client request body might be corrupted; the bug had
         appeared in 1.10.2.

      *) Bugfix: a segmentation fault might occur in a worker process when
         using HTTP/2; the bug had appeared in 1.10.2.

      *) Bugfix: an incorrect response might be returned when using the
         "sendfile" directive on FreeBSD and macOS; the bug had appeared in
         1.7.8.

      *) Bugfix: a truncated response might be stored in cache when using the
         "aio_write" directive.

      *) Bugfix: a socket leak might occur when using the "aio_write"
         directive.

  [Test Case]

  No test cases available as there are no bugs filed for any of these in
  Ubuntu.  However, due to HTTP/2, any 'bugs' in these which may corrupt
  data or not kill worker processes correctly, or segfault, should be
  addressed.

  [Regression Potential]

  All these bugfixes were tested upstream by the nginx team, and do not
  pose a regression risk to the existing software versions or features
  of Ubuntu in affected releases.

  [Other Info]

  I will be uploading nginx 1.10.3 directly to Zesty today, and then
  have a merge ready by the end of the week for Zesty from Debian, which
  pulls in dynamic module support, etc.  This SRU is written here ahead
  of having the Zesty update done, because this happens to be on my list
  of things to get done before the Zesty update.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/nginx/+bug/1663937/+subscriptions