From: Maxim Dounin <mdounin@mdounin.ru>
Date: Thu, 12 Apr 2012 13:00:53 +0000 (+0000)
Subject: nginx-1.0.15-RELEASE
X-Git-Tag: release-1.0.15
X-Git-Url: http://www.kaiwu.me/postgresql/commit/?a=commitdiff_plain;h=6350cc9101cf6098b462adcef34fb8ce28c438f7;p=nginx.git

nginx-1.0.15-RELEASE
---

diff --git a/docs/xml/nginx/changes.xml b/docs/xml/nginx/changes.xml
index 3821e7e1e..c12d328e4 100644
--- a/docs/xml/nginx/changes.xml
+++ b/docs/xml/nginx/changes.xml
@@ -9,6 +9,36 @@
 <title lang="en">nginx changelog</title>
 
 
+<changes ver="1.0.15" date="12.04.2012">
+
+<change type="security">
+<para lang="ru">
+Ð¿ÑÐ¸ Ð¾Ð±ÑÐ°Ð±Ð¾ÑÐºÐµ ÑÐ¿ÐµÑÐ¸Ð°Ð»ÑÐ½Ð¾ ÑÐ¾Ð·Ð´Ð°Ð½Ð½Ð¾Ð³Ð¾ mp4 ÑÐ°Ð¹Ð»Ð° Ð¼Ð¾Ð´ÑÐ»ÐµÐ¼ ngx_http_mp4_module
+Ð¼Ð¾Ð³Ð»Ð¸ Ð¿ÐµÑÐµÐ·Ð°Ð¿Ð¸ÑÑÐ²Ð°ÑÑÑÑ Ð¾Ð±Ð»Ð°ÑÑÐ¸ Ð¿Ð°Ð¼ÑÑÐ¸ ÑÐ°Ð±Ð¾ÑÐµÐ³Ð¾ Ð¿ÑÐ¾ÑÐµÑÑÐ°, ÑÑÐ¾ Ð¼Ð¾Ð³Ð»Ð¾
+Ð¿ÑÐ¸Ð²Ð¾Ð´Ð¸ÑÑ Ðº Ð²ÑÐ¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ñ Ð¿ÑÐ¾Ð¸Ð·Ð²Ð¾Ð»ÑÐ½Ð¾Ð³Ð¾ ÐºÐ¾Ð´Ð° (CVE-2012-2089).<br/>
+Ð¡Ð¿Ð°ÑÐ¸Ð±Ð¾ Matthew Daley.
+</para>
+<para lang="en">
+specially crafted mp4 file might allow to overwrite
+memory locations in a worker process
+if the ngx_http_mp4_module was used,
+potentially resulting in arbitrary code execution (CVE-2012-2089).<br/>
+Thanks to Matthew Daley.
+</para>
+</change>
+
+<change type="bugfix">
+<para lang="ru">
+Ð² Ð¼Ð¾Ð´ÑÐ»Ðµ ngx_http_mp4_module.
+</para>
+<para lang="en">
+in the ngx_http_mp4_module.
+</para>
+</change>
+
+</changes>
+
+
 <changes ver="1.0.14" date="15.03.2012">
 
 <change type="security">
