From: Maxim Dounin <mdounin@mdounin.ru>
Date: Tue, 19 Nov 2013 11:25:24 +0000 (+0400)
Subject: nginx-1.4.4-RELEASE
X-Git-Tag: release-1.4.4
X-Git-Url: http://www.kaiwu.me/postgresql/commit/?a=commitdiff_plain;h=37c4ed61ef7d8c4562053ee3bbb4aa189a616ef8;p=nginx.git

nginx-1.4.4-RELEASE
---

diff --git a/docs/xml/nginx/changes.xml b/docs/xml/nginx/changes.xml
index f0e6559e1..ed5f6221e 100644
--- a/docs/xml/nginx/changes.xml
+++ b/docs/xml/nginx/changes.xml
@@ -5,6 +5,26 @@
 <change_log title="nginx">
 
 
+<changes ver="1.4.4" date="19.11.2013">
+
+<change type="security">
+<para lang="ru">
+ÑÐ¸Ð¼Ð²Ð¾Ð», ÑÐ»ÐµÐ´ÑÑÑÐ¸Ð¹ Ð·Ð° Ð½ÐµÐ·Ð°ÐºÐ¾Ð´Ð¸ÑÐ¾Ð²Ð°Ð½Ð½ÑÐ¼ Ð¿ÑÐ¾Ð±ÐµÐ»Ð¾Ð¼ Ð² ÑÑÑÐ¾ÐºÐµ Ð·Ð°Ð¿ÑÐ¾ÑÐ°,
+Ð¾Ð±ÑÐ°Ð±Ð°ÑÑÐ²Ð°Ð»ÑÑ Ð½ÐµÐ¿ÑÐ°Ð²Ð¸Ð»ÑÐ½Ð¾ (CVE-2013-4547);
+Ð¾ÑÐ¸Ð±ÐºÐ° Ð¿Ð¾ÑÐ²Ð¸Ð»Ð°ÑÑ Ð² 0.8.41.<br/>
+Ð¡Ð¿Ð°ÑÐ¸Ð±Ð¾ Ivan Fratric Ð¸Ð· Google Security Team.
+</para>
+<para lang="en">
+a character following an unescaped space in a request line
+was handled incorrectly (CVE-2013-4547);
+the bug had appeared in 0.8.41.<br/>
+Thanks to Ivan Fratric of the Google Security Team.
+</para>
+</change>
+
+</changes>
+
+
 <changes ver="1.4.3" date="08.10.2013">
 
 <change type="bugfix">
