Security : Nginx 1.4.7, for Wheezy and Squeeze

Posted by & filed under Miscellaneous, Nginx.

Nginx 1.4.7 has been released on March 18th 2014, fixing a potential heap memory buffer overflow when using SPDY, and also the fastcgi_next_upstream directive. More info in the changelog. As a consequence, Dotdeb’s packages of Nginx 1.4.7 are now available for both Debian 7.0 “Wheezy” and Debian 6.0 “Squeeze” (amd64/i386). As usual, if you want… Read more »

Security : Nginx 1.4.6, for Wheezy and Squeeze

Posted by & filed under Nginx.

Nginx 1.4.6 has been released on March 4th 2014, fixing client_max_body_size when used with chunked transfer encoding and a segfault when proxying WebSocket connections. More info in the changelog. As a consequence, Dotdeb’s packages of Nginx 1.4.6 are now available for both Debian 7.0 “Wheezy” and Debian 6.0 “Squeeze” (amd64/i386), with some extra changes :… Read more »

Nginx 1.4.5 for Wheezy and Squeeze

Posted by & filed under Nginx.

Nginx 1.4.5 has been released on February 11th 2014, fixing 7 bugs. More info in the changelog. As a consequence, Dotdeb’s packages of Nginx 1.4.5 are now available for both Debian 7.0 “Wheezy” and Debian 6.0 “Squeeze” (amd64/i386). Pagespeed and some more modules have been updated, dependencies have been reviewed and proxy settings have been… Read more »

Security : Nginx 1.4.4 for Wheezy and Squeeze

Posted by & filed under Nginx.

Nginx 1.4.4 has been released on November 19th 2013, fixing a request line parsing vulnerability by Ivan Fratric of the Google Security Team (CVE-2013-4547). More info in the changelog. As a consequence, Dotdeb’s packages of Nginx 1.4.4 are now available for both Debian 7.0 “Wheezy” and Debian 6.0 “Squeeze” (amd64/i386). Reminder : Users of naxsi-ui… Read more »

Nginx 1.4.3 for Wheezy and Squeeze

Posted by & filed under Nginx.

Nginx 1.4.3 has been released on October 8th 2013, fixing 6 bugs (see the changes). As a consequence, Dotdeb’s packages of Nginx 1.4.3 are now available for both Debian 7.0 “Wheezy” and Debian 6.0 “Squeeze” (amd64/i386) with the following changes : the http_geoip module in now included in nginx-naxsi PageSpeed has been upgraded to 1.6.29.7… Read more »

Nginx 1.4.2 for Wheezy and Squeeze

Posted by & filed under Nginx.

Nginx 1.4.2 has been released on July 17th 2013, fixing 6 bugs (see the changes). As a consequence, Dotdeb’s packages of Nginx 1.4.2 are now available for both Debian 7.0 “Wheezy” and Debian 6.0 “Squeeze” (amd64/i386) with the following changes : SPDY had been enabled in all the Nginx flavors (Wheezy only) PageSpeed 1.6.25.9 has… Read more »

Security : Nginx 1.4.1

Posted by & filed under Nginx.

Nginx 1.4.1 has been released on May 7th 2013, with the fix for the stack-based buffer overflow security problem in nginx 1.3.9 – 1.4.0, discovered by Greg MacManus, of iSIGHT Partners Labs (CVE-2013-2028). As a consequence, Dotdeb’s packages of Nginx 1.4.1 are now available for both Debian 7.0 “Wheezy” and Debian 6.0 “Squeeze” (amd64/i386). As… Read more »

Nginx 1.4.0, for Wheezy and Squeeze

Posted by & filed under Nginx.

Nginx 1.4.0 stable version has been released on April 24th 2013, incorporating many new features developed in the 1.3.x branch : support for proxying of WebSocket connections, OCSP stapling, SPDY module, gunzip filter, and more… See the full Changelog for more details. As a consequence, Dotdeb’s packages of Nginx 1.4.0 are now available for both… Read more »

Nginx 1.2.8

Posted by & filed under Nginx.

Nginx 1.2.8 has been released with 4 bugfixes. See the full Changelog for more details. As a consequence, Dotdeb’s packages of Nginx 1.2.8 are now available for Debian 6.0 “Squeeze” (amd64/i386) with the following changes : The config of the default vhost is now ok by default (see [Edit]). The X-rid header module has been… Read more »

Nginx 1.2.7

Posted by & filed under Nginx.

Today, Nginx 1.2.7 has been released with a few new features but also bugfixes merged from 1.3.x. See the full Changelog for more details. As a consequence, Dotdeb’s packages of Nginx 1.2.7 are now available for Debian 6.0 “Squeeze” (amd64/i386) with the following changes : Logs are now rotated on a weekly basis. Passenger has… Read more »