Accepting request 1147439 from home:13ilya:branches:server:http

- Updated to 1.25.4 * https://nginx.org/en/CHANGES * Fixed segmentation fault might occur in a worker process while processing a specially crafted QUIC session (CVE-2024-24989, CVE-2024-24990). * Fixed connections with pending AIO operations might be closed prematurely during graceful shutdown of old worker processes. * Fixed socket leak alerts no longer logged when fast shutdown was requested after graceful shutdown of old worker processes. * Fixed socket descriptor error, a socket leak, or a segmentation fault in a worker process might occur if AIO was used in a subrequest. * Fixed segmentation fault might occur in a worker process if SSL proxying was used along with the "image_filter" directive and errors with code 415 were redirected with the "error_page" directive. OBS-URL: https://build.opensuse.org/request/show/1147439 OBS-URL: https://build.opensuse.org/package/show/server:http/nginx?expand=0&rev=248
2024-02-18 15:28:52 +00:00 · 2024-02-18 15:28:52 +00:00 · 604e6d898a
commit 604e6d898a
parent 4a71d02af7
6 changed files with 39 additions and 19 deletions
--- a/nginx-1.25.3.tar.gz
+++ b/nginx-1.25.3.tar.gz
@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:64c5b975ca287939e828303fa857d22f142b251f17808dfe41733512d9cded86
-size 1216580
--- a/nginx-1.25.3.tar.gz.asc
+++ b/nginx-1.25.3.tar.gz.asc
@ -1,14 +0,0 @@
-----BEGIN PGP SIGNATURE-----
-
-iQHEBAABCAAuFiEEE8gqY7YDV2FW4wpOoOqYG2aw2WcFAmU35fsQHGsucGF2bG92
-QGY1LmNvbQAKCRCg6pgbZrDZZyOTDACePUL30TGajWOq4xtLh36Bm1OAgi21GWpq
-uM4g4xtt7laNC74Wcyst4BykhEu+NvOclTsbgYKiocyQy3qEPYoru86i0bs2AzXy
-IdT6QwHcl8nU5DcmTRm/h28R1LhM/+SZvDfVqw2QL5w2I8uM2mQs5mFOb8fn3TED
-gdalFfLoFahIfQGNeRzW1dAEjEA/wm06CkoLNBZPmGklVmppzpXODEl8qyN+4+pK
-wVPw5AsP6c55nN86DYMn+F6a5/zhgQO4GlacHPyv8Xi2yEN7Q8r1Dy68mRP+KFRg
-XqxCZVqMswYwcsrogcEwcVWWhW610IOytJKNA1Fx4ZyPiA/qZPJkzhEGUsSm7hgf
-lQ6BbdRcGm7hbe9glXtuQEtGTZuBBA52ToSJ9JLPDAeuLH3HzubS2hhj1JjdJdTq
-IfXA2s7fQBk+sGjQr07oXilRJ+3aaCoja8dSak8r5ihDqXWcu5f6fg5KK9o/j0A5
-vGi9MtfHdknQRdQCjwceDrcCqblT4yg=
-=g79P
-----END PGP SIGNATURE-----
--- a/nginx-1.25.4.tar.gz
+++ b/nginx-1.25.4.tar.gz
@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:760729901acbaa517996e681ee6ea259032985e37c2768beef80df3a877deed9
+size 1236273
--- a/nginx-1.25.4.tar.gz.asc
+++ b/nginx-1.25.4.tar.gz.asc
@ -0,0 +1,17 @@
+-----BEGIN PGP SIGNATURE-----
+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+=LzM5
+-----END PGP SIGNATURE-----
--- a/nginx.changes
+++ b/nginx.changes
@ -1,3 +1,20 @@
+-------------------------------------------------------------------
+Sun Feb 18 15:22:34 UTC 2024 - Илья Индиго <13ilya@gmail.com>
+
+- Updated to 1.25.4
+  * https://nginx.org/en/CHANGES
+  * Fixed segmentation fault might occur in a worker process while
+    processing a specially crafted QUIC session (CVE-2024-24989, CVE-2024-24990).
+  * Fixed connections with pending AIO operations might be closed
+    prematurely during graceful shutdown of old worker processes.
+  * Fixed socket leak alerts no longer logged when fast shutdown was
+    requested after graceful shutdown of old worker processes.
+  * Fixed socket descriptor error, a socket leak, or a segmentation fault
+    in a worker process might occur if AIO was used in a subrequest.
+  * Fixed segmentation fault might occur in a worker process if SSL
+    proxying was used along with the "image_filter" directive and errors
+    with code 415 were redirected with the "error_page" directive.
+
 -------------------------------------------------------------------
 Thu Oct 26 13:49:33 UTC 2023 - Илья Индиго <ilya@ilya.cf>

--- a/nginx.spec
+++ b/nginx.spec
@ -1,7 +1,7 @@
 #
 # spec file for package nginx
 #
-# Copyright (c) 2023 SUSE LLC
+# Copyright (c) 2024 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@ -23,7 +23,7 @@
 %bcond_with    ngx_google_perftools
 #
 Name:           nginx
-Version:        1.25.3
+Version:        1.25.4
 Release:        0
 Summary:        A HTTP server and IMAP/POP3 proxy server
 License:        BSD-2-Clause