From owner-svn-ports-all@FreeBSD.ORG Sun Mar 23 02:35:13 2014 Return-Path: Delivered-To: svn-ports-all@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 3DA31AA9; Sun, 23 Mar 2014 02:35:13 +0000 (UTC) Received: from svn.freebsd.org (svn.freebsd.org [IPv6:2001:1900:2254:2068::e6a:0]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id 1055521C; Sun, 23 Mar 2014 02:35:13 +0000 (UTC) Received: from svn.freebsd.org ([127.0.1.70]) by svn.freebsd.org (8.14.8/8.14.8) with ESMTP id s2N2ZCl1041768; Sun, 23 Mar 2014 02:35:12 GMT (envelope-from osa@svn.freebsd.org) Received: (from osa@localhost) by svn.freebsd.org (8.14.8/8.14.8/Submit) id s2N2ZCiv041766; Sun, 23 Mar 2014 02:35:12 GMT (envelope-from osa@svn.freebsd.org) Message-Id: <201403230235.s2N2ZCiv041766@svn.freebsd.org> From: "Sergey A. Osokin" Date: Sun, 23 Mar 2014 02:35:12 +0000 (UTC) To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r348827 - head/www/nginx-devel X-SVN-Group: ports-head MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-BeenThere: svn-ports-all@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: SVN commit messages for the ports tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 23 Mar 2014 02:35:13 -0000 Author: osa Date: Sun Mar 23 02:35:12 2014 New Revision: 348827 URL: http://svnweb.freebsd.org/changeset/ports/348827 QAT: https://qat.redports.org/buildarchive/r348827/ Log: Security update from 1.5.11 to 1.5.12. *) Security: a heap memory buffer overflow might occur in a worker process while handling a specially crafted request by ngx_http_spdy_module, potentially resulting in arbitrary code execution (CVE-2014-0133). Thanks to Lucas Molas, researcher at Programa STIC, FundaciĆ³n Dr. Manuel Sadosky, Buenos Aires, Argentina. *) Feature: the "proxy_protocol" parameters of the "listen" and "real_ip_header" directives, the $proxy_protocol_addr variable. *) Bugfix: in the "fastcgi_next_upstream" directive. Thanks to Lucas Molas. Modified: head/www/nginx-devel/Makefile head/www/nginx-devel/distinfo Modified: head/www/nginx-devel/Makefile ============================================================================== --- head/www/nginx-devel/Makefile Sun Mar 23 02:29:37 2014 (r348826) +++ head/www/nginx-devel/Makefile Sun Mar 23 02:35:12 2014 (r348827) @@ -2,7 +2,7 @@ # $FreeBSD$ PORTNAME= nginx -PORTVERSION= 1.5.11 +PORTVERSION= 1.5.12 CATEGORIES= www MASTER_SITES= http://nginx.org/download/ MASTER_SITES+= ${MASTER_SITE_LOCAL} Modified: head/www/nginx-devel/distinfo ============================================================================== --- head/www/nginx-devel/distinfo Sun Mar 23 02:29:37 2014 (r348826) +++ head/www/nginx-devel/distinfo Sun Mar 23 02:35:12 2014 (r348827) @@ -1,5 +1,5 @@ -SHA256 (nginx-1.5.11.tar.gz) = 9ae09b6b7c8917d49e227497ba722cdb275abe4e75e761832c1cf2ad7c6036d1 -SIZE (nginx-1.5.11.tar.gz) = 799312 +SHA256 (nginx-1.5.12.tar.gz) = 3f2756027d44afce31366ad4c815fee6116efca00d702131318fcf71d871c6ef +SIZE (nginx-1.5.11.tar.gz) = 800664 SHA256 (giom-nginx_accept_language_module-2f69842.tar.gz) = fbcdf792160a1eff7b9549aeb5209d6e76716ff8e86b05e42c90b2d2f858e011 SIZE (giom-nginx_accept_language_module-2f69842.tar.gz) = 3399 SHA256 (nginx-accesskey-2.0.3.tar.gz) = d9e94321e78a02de16c57f3e048fd31059fd8116ed03d6de7180f435c52502b1