Accepting request 723395 from home:darix:branches:server:http

- update to 1.17.3 - Security: when using HTTP/2 a client might cause excessive memory consumption and CPU usage (CVE-2019-9511, CVE-2019-9513, CVE-2019-9516). - Bugfix: "zero size buf" alerts might appear in logs when using gzipping; the bug had appeared in 1.17.2. - Bugfix: a segmentation fault might occur in a worker process if the "resolver" directive was used in SMTP proxy. OBS-URL: https://build.opensuse.org/request/show/723395 OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=142
2019-08-14 23:25:38 +00:00 · 2019-08-14 23:25:38 +00:00 · 05f633b52d
commit 05f633b52d
parent f3eec2c3e4
6 changed files with 26 additions and 14 deletions
--- a/nginx-1.17.2.tar.gz
+++ b/nginx-1.17.2.tar.gz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:5e333687464e1d6dfb86fc22d653b99a6798dda40093b33186eeeec5a97e69ec
-size 1034136
--- a/nginx-1.17.2.tar.gz.asc
+++ b/nginx-1.17.2.tar.gz.asc
@ -1,10 +0,0 @@
-----BEGIN PGP SIGNATURE-----
-
-iQEcBAABAgAGBQJdNvkBAAoJEFIKmZOhwFL4sI4IAM5wLk2QM1Y6s/nVQQsQaJ0V
-7CfycfjKxAGPqLG1+TdaEzVqCaZwcVzjTLXPU9l9LDGGe3Kd76gebqp1d5zyJX8H
-xpxunSvJKiaz2+TaKFnSEyjKMQ8Wq/6JAg2W2P9qItlcXbSymdUU1bI5KE3V4Eyx
-f7G2ygiCxj+w3WUh3hYEv7VvRS/eQhtq+cqzhktwzPXA1gD740WLA1GPjkF7bUe8
-EJlPdBXtslLriYEmmdePfT4ZipEgHah2MbVS8Cf3Xr/qMs5PNhM9KlYHgPUNcyK6
-3CJ04q/8sxcOkHyJqSaPu+ClBykmAO0laxzdM9c6nBXBb1ofnpXmIIHhMjnI7zU=
-=Kaek
-----END PGP SIGNATURE-----
--- a/nginx-1.17.3.tar.gz
+++ b/nginx-1.17.3.tar.gz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:3b84fe1c2cf9ca22fde370e486a9ab16b6427df1b6ea62cdb61978c9f34d0f3c
+size 1034586
--- a/nginx-1.17.3.tar.gz.asc
+++ b/nginx-1.17.3.tar.gz.asc
@ -0,0 +1,10 @@
+-----BEGIN PGP SIGNATURE-----
+
+iQEcBAABAgAGBQJdUrVcAAoJEFIKmZOhwFL4dQUIALRe312vr+MnKmTcCeqYIgQb
+f63Xxamk16m6A+R3Fo9P1BaRJrnxC9QlPygrHXd4YZ8IOIHSNVrZ9qEWGSa8ooCh
+gfjpuhwhlR0W+SlrgA1ZJE5lWXEIbfh9V/yql+yqeJF3I6Jk9oTUzjXUiDwGwCq6
+GApYqwTwqs0m/POfux6zZjQciSplecmchXjU/F1RclxtMbL22+K8gbkhX8oeE3JA
+VVFi2LQCY6agQtItaMzcouItFNF8u/oGJ0X1LM/TnTiQB5oOaBmcfSf/DD8myR0p
+NxfEBSZQ5dYMJhzAQ/WgwdFL4ViHBR+cMAsrxSb+DecQjUDOW+Z8MQNUv+I0JUQ=
+=qrlC
+-----END PGP SIGNATURE-----
--- a/nginx.changes
+++ b/nginx.changes
@ -1,3 +1,15 @@
+-------------------------------------------------------------------
+Wed Aug 14 23:21:27 UTC 2019 - Marcus Rueckert <mrueckert@suse.de>
+
+- update to 1.17.3
+  - Security: when using HTTP/2 a client might cause excessive
+    memory consumption and CPU usage (CVE-2019-9511, CVE-2019-9513,
+    CVE-2019-9516).
+  - Bugfix: "zero size buf" alerts might appear in logs when using
+    gzipping; the bug had appeared in 1.17.2.
+  - Bugfix: a segmentation fault might occur in a worker process if
+    the "resolver" directive was used in SMTP proxy.
+
 -------------------------------------------------------------------
 Tue Jul 23 19:57:46 UTC 2019 - Michael Ströder <michael@stroeder.com>

--- a/nginx.spec
+++ b/nginx.spec
@ -70,7 +70,7 @@
 %define ngx_doc_dir    %{_datadir}/doc/packages/%{name}
 #
 Name:           nginx
-Version:        1.17.2
+Version:        1.17.3
 Release:        0
 %define ngx_fancyindex_version 0.4.2
 %define ngx_fancyindex_module_path ngx-fancyindex-%{ngx_fancyindex_version}