From: Maxim Dounin <mdounin@mdounin.ru>
Date: Mon, 6 May 2013 10:20:27 +0000 (+0400)
Subject: nginx-1.4.1-RELEASE
X-Git-Tag: release-1.4.1
X-Git-Url: http://www.kaiwu.me/postgresql/commit/?a=commitdiff_plain;h=45b587fdc7e88fcb9654254737d661bb5b7dbc83;p=nginx.git

nginx-1.4.1-RELEASE
---

diff --git a/docs/xml/nginx/changes.xml b/docs/xml/nginx/changes.xml
index 71e069342..6a0b1af8f 100644
--- a/docs/xml/nginx/changes.xml
+++ b/docs/xml/nginx/changes.xml
@@ -5,6 +5,28 @@
 <change_log title="nginx">
 
 
+<changes ver="1.4.1" date="07.05.2013">
+
+<change type="security">
+<para lang="ru">
+Ð¿ÑÐ¸ Ð¾Ð±ÑÐ°Ð±Ð¾ÑÐºÐµ ÑÐ¿ÐµÑÐ¸Ð°Ð»ÑÐ½Ð¾ ÑÐ¾Ð·Ð´Ð°Ð½Ð½Ð¾Ð³Ð¾ Ð·Ð°Ð¿ÑÐ¾ÑÐ°
+Ð¼Ð¾Ð³ Ð¿ÐµÑÐµÐ·Ð°Ð¿Ð¸ÑÑÐ²Ð°ÑÑÑÑ ÑÑÐµÐº ÑÐ°Ð±Ð¾ÑÐµÐ³Ð¾ Ð¿ÑÐ¾ÑÐµÑÑÐ°,
+ÑÑÐ¾ Ð¼Ð¾Ð³Ð»Ð¾ Ð¿ÑÐ¸Ð²Ð¾Ð´Ð¸ÑÑ Ðº Ð²ÑÐ¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ñ Ð¿ÑÐ¾Ð¸Ð·Ð²Ð¾Ð»ÑÐ½Ð¾Ð³Ð¾ ÐºÐ¾Ð´Ð° (CVE-2013-2028);
+Ð¾ÑÐ¸Ð±ÐºÐ° Ð¿Ð¾ÑÐ²Ð¸Ð»Ð°ÑÑ Ð² 1.3.9.<br/>
+Ð¡Ð¿Ð°ÑÐ¸Ð±Ð¾ Greg MacManus, iSIGHT Partners Labs.
+</para>
+<para lang="en">
+a stack-based buffer overflow might occur in a worker process
+while handling a specially crafted request,
+potentially resulting in arbitrary code execution (CVE-2013-2028);
+the bug had appeared in 1.3.9.<br/>
+Thanks to Greg MacManus, iSIGHT Partners Labs.
+</para>
+</change>
+
+</changes>
+
+
 <changes ver="1.4.0" date="24.04.2013">
 
 <change type="bugfix">
