[ubuntu/zesty-proposed] nginx 1.10.1-0ubuntu3 (Accepted)

Thomas Ward teward at ubuntu.com
Wed Oct 26 20:40:08 UTC 2016 

nginx (1.10.1-0ubuntu3) zesty; urgency=medium

  [ Christos Trochalakis ]
  * debian/nginx-common.postinst:
    + Secure log file handling (owner & permissions) against privilege
      escalation attacks. /var/log/nginx is now owned by root:adm.
      Thanks Dawid Golunski (http://legalhackers.com) for the report.
      Changing /var/log/nginx permissions effectively reopens #701112,
      since log files can be world-readable. This is a trade-off until
      a better log opening solution is implemented upstream (trac:376).
  * debian/control:
    Don't allow building against liblua5.1-0-dev on architectures
    that libluajit is available.

Date: Tue, 25 Oct 2016 17:03:54 -0400
Changed-By: Thomas Ward <teward at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/nginx/1.10.1-0ubuntu3
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Tue, 25 Oct 2016 17:03:54 -0400
Source: nginx
Binary: nginx nginx-doc nginx-common nginx-core nginx-core-dbg nginx-full nginx-full-dbg nginx-light nginx-light-dbg nginx-extras nginx-extras-dbg
Architecture: source
Version: 1.10.1-0ubuntu3
Distribution: zesty
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Thomas Ward <teward at ubuntu.com>
Description: 
 nginx      - small, powerful, scalable web/proxy server
 nginx-common - small, powerful, scalable web/proxy server - common files
 nginx-core - nginx web/proxy server (core version)
 nginx-core-dbg - nginx web/proxy server (core version) - debugging symbols
 nginx-doc  - small, powerful, scalable web/proxy server - documentation
 nginx-extras - nginx web/proxy server (extended version)
 nginx-extras-dbg - nginx web/proxy server (extended version) - debugging symbols
 nginx-full - nginx web/proxy server (standard version)
 nginx-full-dbg - nginx web/proxy server (standard version) - debugging symbols
 nginx-light - nginx web/proxy server (basic version)
 nginx-light-dbg - nginx web/proxy server (basic version) - debugging symbols
Changes: 
 nginx (1.10.1-0ubuntu3) zesty; urgency=medium
 .
   [ Christos Trochalakis ]
   * debian/nginx-common.postinst:
     + Secure log file handling (owner & permissions) against privilege
       escalation attacks. /var/log/nginx is now owned by root:adm.
       Thanks Dawid Golunski (http://legalhackers.com) for the report.
       Changing /var/log/nginx permissions effectively reopens #701112,
       since log files can be world-readable. This is a trade-off until
       a better log opening solution is implemented upstream (trac:376).
   * debian/control:
     Don't allow building against liblua5.1-0-dev on architectures
     that libluajit is available.
Checksums-Sha1: 
 9f6910e2b0f5274c9dbc58378ae64c967c10fa53 3009 nginx_1.10.1-0ubuntu3.dsc
 0b9d284af8efdd8d3ae5e064965cc4f8cc3d6624 1005324 nginx_1.10.1-0ubuntu3.debian.tar.gz
Checksums-Sha256: 
 7385a63da41f418f35be5393b0e9150830b5b3addf0ef1c7a652cbb6d2e7f0d5 3009 nginx_1.10.1-0ubuntu3.dsc
 b456612943af815a98781459d17d8a12c33a828f6178acec4a07319068acfac7 1005324 nginx_1.10.1-0ubuntu3.debian.tar.gz
Files: 
 227dad189f1241fa51b1fec2fa107045 3009 httpd optional nginx_1.10.1-0ubuntu3.dsc
 f275bfe1d32df88a2a30b0263dea3b89 1005324 httpd optional nginx_1.10.1-0ubuntu3.debian.tar.gz
Original-Maintainer: Kartik Mistry <kartik at debian.org>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=raOv
-----END PGP SIGNATURE-----

More information about the Zesty-changes mailing list