K 10
svn:author
V 3
osa
K 8
svn:date
V 27
2014-03-23T02:35:12.316304Z
K 7
svn:log
V 612
Security update from 1.5.11 to 1.5.12.

<ChangeLog>

*) Security: a heap memory buffer overflow might occur in a worker
   process while handling a specially crafted request by
   ngx_http_spdy_module, potentially resulting in arbitrary code
   execution (CVE-2014-0133).
   Thanks to Lucas Molas, researcher at Programa STIC, Fundación Dr.
   Manuel Sadosky, Buenos Aires, Argentina.

*) Feature: the "proxy_protocol" parameters of the "listen" and
   "real_ip_header" directives, the $proxy_protocol_addr variable.

*) Bugfix: in the "fastcgi_next_upstream" directive.
   Thanks to Lucas Molas.

</ChangeLog>

END