Diffusion FreeBSD ports repository 07d1217a854d

www/nginx-devel: security update from 1.20.0 to 1.21.0.
07d1217a854d
Actions

Description

www/nginx-devel: security update from 1.20.0 to 1.21.0.

Security: 0882f019-bd60-11eb-9bdd-8c164567ca3c
Security: CVE-2021-23017

*) Security: 1-byte memory overwrite might occur during DNS server

response processing if the "resolver" directive was used, allowing an
attacker who is able to forge UDP packets from the DNS server to
cause worker process crash or, potentially, arbitrary code execution
(CVE-2021-23017).

*) Feature: variables support in the "proxy_ssl_certificate",

"proxy_ssl_certificate_key" "grpc_ssl_certificate",
"grpc_ssl_certificate_key", "uwsgi_ssl_certificate", and
"uwsgi_ssl_certificate_key" directives.

*) Feature: the "max_errors" directive in the mail proxy module.

*) Feature: the mail proxy module supports POP3 and IMAP pipelining.

*) Feature: the "fastopen" parameter of the "listen" directive in the

stream module.
Thanks to Anbang Wen.

*) Bugfix: special characters were not escaped during automatic redirect

with appended trailing slash.

*) Bugfix: connections with clients in the mail proxy module might be

closed unexpectedly when using SMTP pipelining.

</Changelog>

Details

Provenance

osa	Authored on May 25 2021, 3:49 PM

Parents

R11:1109a4b0c628: security/vuxml: document vulnerability in www/nginx and www/nginx-devel

Branches

Unknown

Tags

Unknown

Event Timeline

osa committed R11:07d1217a854d: www/nginx-devel: security update from 1.20.0 to 1.21.0. (authored by osa).May 25 2021, 3:49 PM

osa mentioned this in R11:9966f49bbdbe: www/nginx-devel: security update to 1.21.0..May 25 2021, 3:56 PM

Changes (2)

Path

Size

www/

nginx-devel/

Makefile

distinfo

R11:07d1217a854d

View Options

www/nginx-devel/Makefile