Date: Tue, 6 Nov 2018 20:35:12 +0000 (UTC) From: "Sergey A. Osokin" <osa@FreeBSD.org> To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r484324 - head/www/nginx-devel Message-ID: <201811062035.wA6KZCXP063940@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: osa Date: Tue Nov 6 20:35:11 2018 New Revision: 484324 URL: https://svnweb.freebsd.org/changeset/ports/484324 Log: Security update from 1.15.5 to 1.15.6. Temporary disable third-party upstream_fair module, it should be updated to build with the modern version of the nginx. While I'm here fix some whitespaces. MFH: 2018Q4 Security: 84ca56be-e1de-11e8-bcfd-00e04c1ea73d <ChangeLog> *) Security: when using HTTP/2 a client might cause excessive memory consumption (CVE-2018-16843) and CPU usage (CVE-2018-16844). *) Security: processing of a specially crafted mp4 file with the ngx_http_mp4_module might result in worker process memory disclosure (CVE-2018-16845). *) Feature: the "proxy_socket_keepalive", "fastcgi_socket_keepalive", "grpc_socket_keepalive", "memcached_socket_keepalive", "scgi_socket_keepalive", and "uwsgi_socket_keepalive" directives. *) Bugfix: if nginx was built with OpenSSL 1.1.0 and used with OpenSSL 1.1.1, the TLS 1.3 protocol was always enabled. *) Bugfix: working with gRPC backends might result in excessive memory consumption. </ChangeLog> Modified: head/www/nginx-devel/Makefile head/www/nginx-devel/Makefile.extmod head/www/nginx-devel/distinfo Modified: head/www/nginx-devel/Makefile ============================================================================== --- head/www/nginx-devel/Makefile Tue Nov 6 20:27:58 2018 (r484323) +++ head/www/nginx-devel/Makefile Tue Nov 6 20:35:11 2018 (r484324) @@ -2,8 +2,7 @@ # $FreeBSD$ PORTNAME= nginx -PORTVERSION= 1.15.5 -PORTREVISION= 5 +PORTVERSION= 1.15.6 CATEGORIES= www MASTER_SITES= http://nginx.org/download/ \ LOCAL/osa Modified: head/www/nginx-devel/Makefile.extmod ============================================================================== --- head/www/nginx-devel/Makefile.extmod Tue Nov 6 20:27:58 2018 (r484323) +++ head/www/nginx-devel/Makefile.extmod Tue Nov 6 20:35:11 2018 (r484324) @@ -164,10 +164,11 @@ HTTP_UPSTREAM_CHECK_EXTRA_PATCHES= ${PATCHDIR}/extra-p HTTP_UPSTREAM_FAIR_GH_TUPLE= cryptofuture:nginx-upstream-fair:b5be36f:upstreamfair HTTP_UPSTREAM_FAIR_VARS= DSO_EXTMODS+=upstreamfair +HTTP_UPSTREAM_FAIR_IGNORE= UPSTREAM_FAIR: a patch requires HTTP_UPSTREAM_STICKY_IMPLIES= HTTP_SSL -HTTP_UPSTREAM_STICKY_GH_TUPLE= thomsonreuters:nginx-sticky-module-ng:0d58565:upstreamsticky -HTTP_UPSTREAM_STICKY_CONFIGURE_ON= --add-module=${WRKSRC_upstreamsticky} +HTTP_UPSTREAM_STICKY_GH_TUPLE= thomsonreuters:nginx-sticky-module-ng:0d58565:upstreamsticky +HTTP_UPSTREAM_STICKY_CONFIGURE_ON= --add-module=${WRKSRC_upstreamsticky} HTTP_VIDEO_THUMBEXTRACTOR_LIB_DEPENDS= libavformat.so:multimedia/ffmpeg \ libavcodec.so:multimedia/ffmpeg \ Modified: head/www/nginx-devel/distinfo ============================================================================== --- head/www/nginx-devel/distinfo Tue Nov 6 20:27:58 2018 (r484323) +++ head/www/nginx-devel/distinfo Tue Nov 6 20:35:11 2018 (r484324) @@ -1,6 +1,6 @@ -TIMESTAMP = 1540858808 -SHA256 (nginx-1.15.5.tar.gz) = 1a3a889a8f14998286de3b14cc1dd5b2747178e012d6d480a18aa413985dae6f -SIZE (nginx-1.15.5.tar.gz) = 1024791 +TIMESTAMP = 1541524865 +SHA256 (nginx-1.15.6.tar.gz) = a3d8c67c2035808c7c0d475fffe263db8c353b11521aa7ade468b780ed826cc6 +SIZE (nginx-1.15.6.tar.gz) = 1025761 SHA256 (ngx_cache_purge-2.3.tar.gz) = 279e0d8a46d3b1521fd43b3f78bc1c08b263899142a7cc5058c1c0361a92c89c SIZE (ngx_cache_purge-2.3.tar.gz) = 12248 SHA256 (nginx_mogilefs_module-1.0.4.tar.gz) = 7ac230d30907f013dff8d435a118619ea6168aa3714dba62c6962d350c6295ae
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201811062035.wA6KZCXP063940>