Date: Wed, 5 Feb 2025 17:13:38 GMT From: "Sergey A. Osokin" <osa@FreeBSD.org> To: ports-committers@FreeBSD.org, dev-commits-ports-all@FreeBSD.org, dev-commits-ports-main@FreeBSD.org Subject: git: 5f85ff777104 - main - www/nginx-devel: security update from 1.27.3 to 1.27.4 Message-ID: <202502051713.515HDcLA086782@gitrepo.freebsd.org>
next in thread | raw e-mail | index | archive | help
The branch main has been updated by osa: URL: https://cgit.FreeBSD.org/ports/commit/?id=5f85ff77710430288ed6b79c97817c73e57262c1 commit 5f85ff77710430288ed6b79c97817c73e57262c1 Author: Sergey A. Osokin <osa@FreeBSD.org> AuthorDate: 2025-02-05 17:13:16 +0000 Commit: Sergey A. Osokin <osa@FreeBSD.org> CommitDate: 2025-02-05 17:13:33 +0000 www/nginx-devel: security update from 1.27.3 to 1.27.4 <ChangeLog> *) Security: insufficient check in virtual servers handling with TLSv1.3 SNI allowed to reuse SSL sessions in a different virtual server, to bypass client SSL certificates verification (CVE-2025-23419). *) Feature: the "ssl_object_cache_inheritable", "ssl_certificate_cache", "proxy_ssl_certificate_cache", "grpc_ssl_certificate_cache", and "uwsgi_ssl_certificate_cache" directives. *) Feature: the "keepalive_min_timeout" directive. *) Workaround: "gzip filter failed to use preallocated memory" alerts appeared in logs when using zlib-ng. *) Bugfix: nginx could not build libatomic library using the library sources if the --with-libatomic=DIR option was used. *) Bugfix: QUIC connection might not be established when using 0-RTT; the bug had appeared in 1.27.1. *) Bugfix: nginx now ignores QUIC version negotiation packets from clients. *) Bugfix: nginx could not be built on Solaris 10 and earlier with the ngx_http_v3_module. *) Bugfixes in HTTP/3. </ChangeLog> --- www/nginx-devel/Makefile | 3 +-- www/nginx-devel/distinfo | 6 +++--- 2 files changed, 4 insertions(+), 5 deletions(-) diff --git a/www/nginx-devel/Makefile b/www/nginx-devel/Makefile index 5ebd37de56ca..278df8f9b182 100644 --- a/www/nginx-devel/Makefile +++ b/www/nginx-devel/Makefile @@ -1,6 +1,5 @@ PORTNAME?= nginx -PORTVERSION= 1.27.3 -PORTREVISION= 17 +PORTVERSION= 1.27.4 CATEGORIES= www MASTER_SITES= https://nginx.org/download/ \ LOCAL/osa diff --git a/www/nginx-devel/distinfo b/www/nginx-devel/distinfo index 26605b17c153..9937a8544151 100644 --- a/www/nginx-devel/distinfo +++ b/www/nginx-devel/distinfo @@ -1,6 +1,6 @@ -TIMESTAMP = 1738717656 -SHA256 (nginx-1.27.3.tar.gz) = ba23a9568f442036b61cd0e29bd66a47b90634efa91e0b2cf2d719057a9b7903 -SIZE (nginx-1.27.3.tar.gz) = 1271526 +TIMESTAMP = 1738774691 +SHA256 (nginx-1.27.4.tar.gz) = 294816f879b300e621fa4edd5353dd1ec00badb056399eceb30de7db64b753b2 +SIZE (nginx-1.27.4.tar.gz) = 1277177 SHA256 (nginx_mogilefs_module-1.0.4.tar.gz) = 7ac230d30907f013dff8d435a118619ea6168aa3714dba62c6962d350c6295ae SIZE (nginx_mogilefs_module-1.0.4.tar.gz) = 11208 SHA256 (ngx_http_redis-0.3.9.tar.gz) = 21f87540f0a44b23ffa5df16fb3d788bc90803b255ef14f9c26e3847a6f26f46
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?202502051713.515HDcLA086782>