Subject: CVS commit: pkgsrc/www/nginx
From: Emile iMil Heitor
Date: 2014-03-19 15:14:31
Message id: 20140319141431.93D1396@cvs.netbsd.org
Log Message:
Changes with nginx 1.4.7                                         18 Mar 2014

    *) Security: a heap memory buffer overflow might occur in a worker
       process while handling a specially crafted request by
       ngx_http_spdy_module, potentially resulting in arbitrary code
       execution (CVE-2014-0133).
       Thanks to Lucas Molas, researcher at Programa STIC, FundaciĆ³n Dr.
       Manuel Sadosky, Buenos Aires, Argentina.

    *) Bugfix: in the "fastcgi_next_upstream" directive.
       Thanks to Lucas Molas.
Files:
RevisionActionfile
1.49modifypkgsrc/www/nginx/Makefile
1.36modifypkgsrc/www/nginx/distinfo