nginx (0.7.67-3+squeeze4+deb6u1) squeeze-lts; urgency=high * CVE-2016-0742: Invalid pointer dereference might occur during DNS server response processing, allowing an attacker who is able to forge UDP packets from the DNS server to cause worker process crash. (Closes: #812806) -- Chris Lamb Wed, 27 Jan 2016 09:58:15 +0100 nginx (0.7.67-3+squeeze4) squeeze-lts; urgency=high * LTS upload. * CVE-2014-3616: "it was possible to reuse SSL sessions in unrelated contexts if a shared SSL session cache or the same TLS session ticket key was used for multiple "server" blocks". Well, now it ain't. * Patch auto/os/linux to account for newer kernel versions that are formatted differently. -- Matt Palmer Wed, 17 Sep 2014 08:25:20 +1000 nginx (0.7.67-3+squeeze3) stable-security; urgency=high * debian/patches/CVE-2012-4929.diff: + Fixes the vulnerability to CRIME SSL attack. See: CVE-2012-4929 for more details.(Closes: #700426). -- Cyril Lavier Wed, 13 Feb 2013 14:32:44 +0100 nginx (0.7.67-3+squeeze2) stable-security; urgency=high * debian/patches/CVE-2012-1180.diff: + Fixed the memory issue found on March 15th 2012. See: CVE-2012-1180 for more details. * debian/control: + Added myself as uploader. -- Cyril Lavier Fri, 16 Mar 2012 17:55:22 +0530 nginx (0.7.67-3+squeeze1) stable; urgency=low * debian/patches/CVE-2011-4315.diff: + Fixed compression pointer processing in DNS response greater than 255 bytes. See: CVE-2011-4315 for more details. -- Kartik Mistry Wed, 23 Nov 2011 13:47:10 +0530 nginx (0.7.67-3) unstable; urgency=low * debian/rules: + Readded the configure option --with-mail_ssl_module, Thanks to Roland Rosenfeld (Closes: #590815) * debian/control: + Updated Standards-Version to 3.9.1 (no changes needed) -- Kartik Mistry Thu, 29 Jul 2010 21:41:52 +0530 nginx (0.7.67-2) unstable; urgency=low * debian/conf/sites-available/default: + Removed reference to SSLv2 protocol (Closes: #589139) * debian/control: + Updated Standards-Version to 3.9.0 * debian/copyright: + Don't point to BSD license file, included exact upstream version of license text + Added missing copyright owner for contrib/ scripts + debian/* license is same as upstream now as discussed with co-maintainers -- Kartik Mistry Mon, 19 Jul 2010 10:36:32 +0530 nginx (0.7.67-1) unstable; urgency=low * New upstream release -- Kartik Mistry Wed, 16 Jun 2010 01:26:51 +0530 nginx (0.7.65-7) unstable; urgency=low [Kartik Mistry] * debian/rules: + Enabled HTTPSubModule module in configure (Closes: #584828) + Arranged configure options in better manner -- Kartik Mistry Mon, 07 Jun 2010 14:33:24 +0530 nginx (0.7.65-6) unstable; urgency=low [Kartik Mistry] * debian/README.Debian: + Fixed typo and somewhat better wordings * debian/conf/mime.types: + Added entry to support 7zip files (Closes: #580423) * debian/init.d: + Do not print config testing info until an error found, Thanks to Ubuntu bug 568293 * debian/copyright: + Updated as per DEP-5 specification -- Kartik Mistry Sat, 22 May 2010 01:41:33 +0530 nginx (0.7.65-5) unstable; urgency=low [Kartik Mistry] * debian/patches/fix_reloading_ipv6.diff: + Added patch to fix reloading with IPv6 addresses, Thanks to Matthias-Christian Ott for patch (Closes: #577456) -- Kartik Mistry Wed, 14 Apr 2010 11:36:48 +0530 nginx (0.7.65-4) unstable; urgency=low [Kartik Mistry] * debian/conf/sites-available/default: + Really listen for both IPv4 and IPv6 addresses. Thanks to Nikolaus Schulz for notice (Closes: #574983) * debian/control, debian/rules: + Added GeoIP support, Thanks to Caetano Carezzato (Closes: #575280) * debian/conf/mime.types: + Added svg entry to mime.types, Jeremy Lal (Closes: #575155) -- Kartik Mistry Thu, 25 Mar 2010 00:21:50 +0530 nginx (0.7.65-3) unstable; urgency=medium [Kartik Mistry] * Urgency set to medium due to Release Goal * debian/conf/sites-available/default: + Listen for both IPv4 and IPv6 addresses by default (Closes: #574983) -- Kartik Mistry Tue, 23 Mar 2010 10:30:18 +0530 nginx (0.7.65-2) unstable; urgency=low * debian/README.Debian: + Added explanation about not installing files in /var/www/ (Closes: #572513) * debian/rules: + Readded realip module support (Closes: #507419) -- Kartik Mistry Sat, 06 Mar 2010 13:14:48 +0530 nginx (0.7.65-1) unstable; urgency=low [Kartik Mistry] * New upstream release * debian/init.d: + $local_fs $remote_fs $network $syslog is what we need in Required-Start and Required-Stop (Closes: #568238) * debian/copyright: + Updated package copyright year + Updated license text to make same as upstream license -- Kartik Mistry Fri, 05 Feb 2010 11:20:28 +0530 nginx (0.7.64-3) unstable; urgency=low [Kartik Mistry] * debian/conf/sites-available/default: + Added patch to fix default virtual host, Thanks to Thomas Venieris (Closes: #564726) * debian/init.d: + Added dependency on $remote_fs in Required-Start and Required-Stop (Closes: #566862) * Converted package to use 3.0 (quilt) source format * Updated to Standards-Version 3.8.4 -- Kartik Mistry Mon, 01 Feb 2010 23:44:21 +0530 nginx (0.7.64-2) unstable; urgency=low [Kartik Mistry] * debian/rules: + Used dh_prep instead of dh_clean -k * debian/control: + Added ${misc:Depends} in Depends * Added patch for adding debug package, Thanks to Matthew Palmer (Closes: #563339) * debian/copyright: + Added missing copyright owners for Debian package and fixed year and licence doesn't point to versionless symlink [Fabio Tranchitella] * debian/init.d: + Added patch from Wouter de Bie to add $DAEMON_OPTS in test_nginx_config() -- Kartik Mistry Sat, 09 Jan 2010 11:15:59 +0530 nginx (0.7.64-1) unstable; urgency=medium [Kartik Mistry] * Urgency set to medium due to security issue * New upstream release (Closes: #557602) + fixes SSL renegotiation vuln CVE-2009-3555 (Closes: #557873) * debian/nginx.1: + Corrected homepage entry (Closes: #556617) + Minor whitespace and empty line cleanups, added SEE ALSO section. Used .TP instead of .br, Added missing options, and this should (Closes: #556616) * debian/copyright: + Used © instead of deprecated (C) symbol + Formatted some texts * debian/control: + Added myself as uploader + Wrapped and rearranged Build-Depends for better readability * debian/patches/dlopen.dpatch: + Fixed patch name in comment + Added missing DP comment from changelog * debian/rules: + Minor fixes related to formatting of file and whitespaces * debian/watch: + Removed comments out of it -- Kartik Mistry Fri, 27 Nov 2009 11:10:18 +0530 nginx (0.7.63-1) unstable; urgency=low * New upstream release. -- Fabio Tranchitella Sun, 08 Nov 2009 09:53:46 +0100 nginx (0.7.62-4) unstable; urgency=low * debian/conf/nginx.conf: commented out the mail proxy example. (Closes: #551682) * debian/init.d: do not redirect the output of nginx -t. (Closes: #551683) -- Fabio Tranchitella Thu, 22 Oct 2009 19:50:05 +0200 nginx (0.7.62-3) unstable; urgency=low * debian/rules: fix the FTBFS on sparc. -- Fabio Tranchitella Fri, 16 Oct 2009 06:39:22 +0000 nginx (0.7.62-2) unstable; urgency=low * debian/rules: added --with-mail and --with-mail_ssl_module. * debian/patches/nginx-upstream-fair.dpatch: added support for the nginx-upstream-fair module. (Closes: #521447) * debian/patches/dlopen.dpatch: applied patch to remove the unnecesssary link to libdl. (Closes: #540599) -- Fabio Tranchitella Thu, 15 Oct 2009 18:32:00 +0000 nginx (0.7.62-1) unstable; urgency=low * New upstream release. * debian/rules: added --with-ipv6. (Closes: #547249) -- Fabio Tranchitella Sun, 27 Sep 2009 22:25:16 +0200 nginx (0.7.61-2) unstable; urgency=low * debian/control: bumped Standards-Version to 3.8.3, no changes needed. * debian/init.d: added status action. (Closes: #541228) * debian/rules: - added -with-http_gzip_static_module. (Closes: #541229) - use the switch --with-cc-opt="-m32 -mcpu=ultrasparc" on sparc. (Closes: #543571) -- Fabio Tranchitella Sat, 29 Aug 2009 17:03:44 +0200 nginx (0.7.61-1) unstable; urgency=low * New upstream version: *) Bugfix: nginx could not be built --without-http-cache; the bug had appeared in 0.7.60. *) Bugfix: a segmentation fault occurred in worker process, if a backend 401 error was intercepted and the backend did not set the "WWW-Authenticate" response header line. Thanks to Eugene Mychlo. *) Feature: the "keepalive_requests" directive. *) Bugfix: in open_file_cache and proxy/fastcgi cache interaction on start up. *) Bugfix: open_file_cache might cache open file descriptors too long. *) Bugfix: XLST filter did not work in subrequests. * Fix "gzip_disable in default conf for old IE", adding ignore rules for certain MSIE versions in the default configuration (Closes: #540025) * Fix "init.d: Config test before allowing a restart" adding a function and calling it before reloading, restarting and starting (Closes: #539778) * Drops path for pidof call in postinst script. -- Jose Parrella Wed, 05 Aug 2009 14:00:11 -0500 nginx (0.7.59-1) unstable; urgency=low * New upstream release, first in Debian for the 0.7 branch. Among other issues, it also fixes the problem with wildcard dns names used with SSL. (Closes: #515904) * debian/watch: updated. * debian/postinst: fixed a bashism. (Closes: #507913) * debian/conf/nginx.conf: removed default_type. (Closes: #509390) * debian/control: updated Standards-Version to 3.8.1, no changes needed. * debian/NEWS.Debian: documented the issues with server_names_hash_bucket_size. (Closes: #524785) -- Fabio Tranchitella Sun, 31 May 2009 18:38:56 +0200 nginx (0.7.14-1) experimental; urgency=low * New upstream release. * Adding configtest to the init.d script (Closes: #496279) * postinst now calls the builtin kill, so tweaks on the specific signal calls were needed. * Default HTML files are no longer installed. * The default configuration file no longer requires a 50x file under /var/www. -- Jose Parrella Tue, 02 Sep 2008 20:48:58 -0430 nginx (0.6.34-2) unstable; urgency=low * Added support for realip module. (Closes: #507419) -- Fabio Tranchitella Sat, 06 Dec 2008 10:34:01 +0100 nginx (0.6.34-1) unstable; urgency=low * New upstream release. * debian/rules: removed the --with-debug configure switch. (Closes: #500891) -- Fabio Tranchitella Sun, 30 Nov 2008 11:37:13 +0100 nginx (0.6.32-3) unstable; urgency=low * debian/control: build again on all the architectures, but use the switch --with-cc-opt="-m32 -mcpu=ultrasparc" on sparch. (Closes: #479185) -- Fabio Tranchitella Thu, 25 Sep 2008 17:14:27 +0200 nginx (0.6.32-2) unstable; urgency=low * debian/control: disabled support for sparc. (Closes: #479185) -- Fabio Tranchitella Sat, 20 Sep 2008 11:48:48 +0200 nginx (0.6.32-1) unstable; urgency=low * New upstream release. -- Fabio Tranchitella Fri, 18 Jul 2008 09:15:58 +0200 nginx (0.6.31-2) unstable; urgency=low * debian/control: removed httpd-cgi, nginx doesn't support executing external programs. (Closes: #482332) -- Fabio Tranchitella Thu, 22 May 2008 08:18:52 +0200 nginx (0.6.31-1) unstable; urgency=low * New upstream release. -- Fabio Tranchitella Mon, 12 May 2008 22:34:55 +0200 nginx (0.6.30-2) unstable; urgency=low * Upload into unstable. -- Fabio Tranchitella Mon, 12 May 2008 14:24:53 +0200 nginx (0.6.30-1) experimental; urgency=low * New upstream release. * Sync with the unstable packages. * debian/conf/nginx.conf: add support for a conf.d directory. (Closes: #476952) -- Fabio Tranchitella Fri, 02 May 2008 09:32:46 +0200 nginx (0.5.35-3) unstable; urgency=low * debian/conf/sites-available/default: adding support for /doc and /images namespaces (Closes: #474519) -- Jose Parrella Mon, 07 Apr 2008 13:22:32 -0430 nginx (0.5.35-2) unstable; urgency=low * debian/init.d: do not break if start-stop-daemon exits with an error. (Closes: #464453) -- Fabio Tranchitella Sun, 10 Feb 2008 17:57:57 +0100 nginx (0.5.35-1) unstable; urgency=low * New upstream release. -- Fabio Tranchitella Wed, 09 Jan 2008 07:58:56 +0100 nginx (0.5.34-1) unstable; urgency=low * New upstream release. * debian/control: added Homepage, Vcs-Svn, Vcs-Browser fields; updated Standard-Versions to 3.7.3. -- Fabio Tranchitella Mon, 24 Dec 2007 12:26:27 +0100 nginx (0.5.33-1) unstable; urgency=low * New stable upstream release (Closes: #451173) * nginx now provides httpd, httpd-cgi virtual packages (Closes: #439468, #452025) * sites-enabled/default link is now provided only on fresh installations (Closes: #432961) * Updated code for online upgrading of nginx (Closes: #445246) * Reviewed maintainer scripts for correct behaviour on updates (Closes: #452787, #435965) * Removed debian/nginx.links and debian/preinst. * Changing Maintainer address to bureado@debian.org. * Welcoming Fabio Tranchitella as an nginx uploader for Debian. Thanks for your patches. -- Jose Parrella Sat, 08 Dec 2007 11:27:54 -0400 nginx (0.5.30-1) unstable; urgency=low * New stable upstream release. * Adding mime.types (and other upstream conffiles) to the package since it was lost on 0.5.26 (Closes: #435964) -- Jose Parrella Sat, 04 Aug 2007 10:39:40 -0400 nginx (0.5.26-1) unstable; urgency=low * New stable upstream release. * Updating init.d usage message. * Installing logrotate script (Closes: #397978) -- Jose Parrella Sun, 17 Jun 2007 20:43:35 +0100 nginx (0.5.18-1) unstable; urgency=low * New upstream version (Closes: #420063) * Adding DAV support (Closes: #415678) * Adding support for sites-[available|enabled]/ (Closes: #419912) -- Jose Parrella Thu, 19 Apr 2007 21:50:37 -0400 nginx (0.5.13-1) unstable; urgency=low * Adding FLV support. (Closes: #411105) * Adding SSL support. -- Jose Parrella Mon, 19 Feb 2007 10:30:07 -0400 nginx (0.5.12-2) unstable; urgency=low * Patching src/core/ngx_shmtx.h in order to solve FTBFS problems in non-x86 archs (Thanks to Igor Sysoev) (Closes: #410884) -- Jose Parrella Wed, 14 Feb 2007 13:32:01 -0400 nginx (0.5.12-1) unstable; urgency=low * New upstream version fixes FTBFS problems in non-x86 archs (Closes: #409878) -- Jose Parrella Mon, 12 Feb 2007 19:37:07 -0400 nginx (0.5.11-1) unstable; urgency=low * New upstream version. (Closes: #405983) -- Jose Parrella Sun, 5 Feb 2007 19:35:56 -0400 nginx (0.4.13-2) unstable; urgency=low * Fixed default installation paths for www/ files, avoiding the default installation of index.html in /var/www (Closes: #400103) * Alexey Besciokov provided new postinst and prerm scripts with the ability to reload the master binary (Closes: #398009) -- Jose Parrella Fri, 24 Nov 2006 07:12:46 -0400 nginx (0.4.13-1) unstable; urgency=low * New upstream version * Fixed default configuration file which made nginx to fail at installation and purge. -- Jose Parrella Thu, 16 Nov 2006 22:44:33 -0400 nginx (0.4.12-1) unstable; urgency=low * New upstream version (Closes: #397969) * nginx will now compile with debugging and status support (Closes: #397967) * Added configuration reload support in the init.d script (Closes: #397980) * Added logrotate script (Closes: #397978) * Added debian/upstream.pl as a brief helper for new upstream version packaging. * Thanks to Alexey Besciokov for suggestions, bug reports and patches. -- Jose Parrella Sun, 12 Nov 2006 18:31:24 -0400 nginx (0.4.2-1) unstable; urgency=low * Initial release (Closes: #386151) * Tweaked the configuration file and the path handling for Debian. -- Jose Parrella Thu, 14 Sep 2006 11:40:20 -0400