K 10
svn:author
V 3
osa
K 8
svn:date
V 27
2018-11-06T20:35:11.695260Z
K 7
svn:log
V 988
Security update from 1.15.5 to 1.15.6.

Temporary disable third-party upstream_fair module, it should
be updated to build with the modern version of the nginx.

While I'm here fix some whitespaces.

MFH:		2018Q4
Security:	84ca56be-e1de-11e8-bcfd-00e04c1ea73d

<ChangeLog>

*) Security: when using HTTP/2 a client might cause excessive memory
   consumption (CVE-2018-16843) and CPU usage (CVE-2018-16844).

*) Security: processing of a specially crafted mp4 file with the
   ngx_http_mp4_module might result in worker process memory disclosure
   (CVE-2018-16845).

*) Feature: the "proxy_socket_keepalive", "fastcgi_socket_keepalive",
   "grpc_socket_keepalive", "memcached_socket_keepalive",
   "scgi_socket_keepalive", and "uwsgi_socket_keepalive" directives.

*) Bugfix: if nginx was built with OpenSSL 1.1.0 and used with OpenSSL
   1.1.1, the TLS 1.3 protocol was always enabled.

*) Bugfix: working with gRPC backends might result in excessive memory
   consumption.

</ChangeLog>

END