aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorMaxim Dounin <mdounin@mdounin.ru>2013-05-13 14:41:51 +0400
committerMaxim Dounin <mdounin@mdounin.ru>2013-05-13 14:41:51 +0400
commit319966a47691dc88912e77769d1b573cdaf173dc (patch)
treee8e6ee94175912a4d38d12d23cfe33d92bfdcfcf
parent2265b3c2b9fefc7b2065ea160466f3a6c0b025d3 (diff)
downloadnginx-release-1.2.9.tar.gz
nginx-release-1.2.9.zip
nginx-1.2.9-RELEASErelease-1.2.9
Diffstat
-rw-r--r--docs/xml/nginx/changes.xml18
1 files changed, 18 insertions, 0 deletions
diff --git a/docs/xml/nginx/changes.xml b/docs/xml/nginx/changes.xml
index 347ee5168..69e64a3f2 100644
--- a/docs/xml/nginx/changes.xml
+++ b/docs/xml/nginx/changes.xml
@@ -5,6 +5,24 @@
<change_log title="nginx">
+<changes ver="1.2.9" date="13.05.2013">
+
+<change type="security">
+<para lang="ru">
+содержимое памяти рабочего процесса могло быть отправлено клиенту,
+если HTTP-бэкенд возвращал специально созданный ответ (CVE-2013-2070);
+ошибка появилась в 1.1.4.
+</para>
+<para lang="en">
+contents of worker process memory might be sent to a client
+if HTTP backend returned specially crafted response (CVE-2013-2070);
+the bug had appeared in 1.1.4.
+</para>
+</change>
+
+</changes>
+
+
<changes ver="1.2.8" date="02.04.2013">
<change type="bugfix">
generated by cgit v1.2.3 (git 2.25.1) at 2025-05-19 03:34:18 +0000