A HTTP server and IMAP/POP3 proxy server
nginx [engine x] is a HTTP server and IMAP/POP3 proxy server written by Igor Sysoev.
It has been running on many heavily loaded Russian sites for more than two years.
- Download package
-
Checkout Package
osc -A https://api.opensuse.org checkout SUSE:SLE-15-SP3:GA/nginx && cd $_ - Create Badge
Refresh
Refresh
Source Files
| Filename | Size | Changed |
|---|---|---|
| nginx-1.11.2-html.patch | 0000000563 563 Bytes | |
| nginx-1.11.2-no_Werror.patch | 0000000614 614 Bytes | |
| nginx-1.19.8.tar.gz | 0001060155 1.01 MB | |
| nginx-1.19.8.tar.gz.asc | 0000000455 455 Bytes | |
| nginx-1.2.4-perl_vendor_install.patch | 0000000456 456 Bytes | |
| nginx-1.6.1-default_config.patch | 0000003367 3.29 KB | |
| nginx-aio.patch | 0000001631 1.59 KB | |
| nginx.changes | 0000103505 101 KB | |
| nginx.init | 0000010501 10.3 KB | |
| nginx.keyring | 0000001912 1.87 KB | |
| nginx.logrotate | 0000000311 311 Bytes | |
| nginx.rpmlintrc | 0000000310 310 Bytes | |
| nginx.service | 0000000401 401 Bytes | |
| nginx.spec | 0000007811 7.63 KB | |
| nginx.sysusers | 0000000070 70 Bytes |
Latest Revision
Stefan Weiberg (suntorytimed)
committed
(revision 2)
Mirrored from OBS SR#879895
- Remove opensuse specific macros to streamline Leap and SLE (jsc#SLE-12124)
- update to 1.19.8:
* Feature: flags in the "proxy_cookie_flags" directive can now contain
variables.
* Feature: the "proxy_protocol" parameter of the "listen" directive,
the "proxy_protocol" and "set_real_ip_from" directives in mail proxy.
* Bugfix: HTTP/2 connections were immediately closed when using
"keepalive_timeout 0"; the bug had appeared in 1.19.7.
* Bugfix: some errors were logged as unknown if nginx was built with
glibc 2.32.
* Bugfix: in the eventport method.
- Referencing lost changelog from older SLE updates:
* Update to 1.16.1:
- add TLS 1.3 support for SLE-15-SP2 (jsc#SLE-9295, bsc#1150711)
- Replace obsolete GeoIP module with MaxMinDB-based GeoIP2 (jsc#SLE-11184, bsc#1156202)
- Start nginx after network is online (boo#1155690)
- Dropping patches for (CVE-2019-9511, CVE-2019-9513, CVE-2019-9516, CVE-2019-20372) since they are added upstream
* CVE-2019-20372
- Fixed an HTTP request smuggling with certain error_page configurations which could
have allowed unauthorized web page reads (bsc#1160682).
* Fix HTTP/2 related security issues:
- CVE-2019-9511: Fixed a denial of service by manipulating the window size and
stream prioritization (bsc#1145579).
- CVE-2019-9513: Fixed a denial of service caused by resource loops (bsc#1145580)
- CVE-2019-9516: Fixed a denial of service caused by header leaks (bsc#1145582)
* Update to nginx 1.14.1:
- Security: when using HTTP/2 a client might cause excessive memory
consumption (CVE-2018-16843 bsc#1115022) and CPU usage (CVE-2018-16844 bsc#1115025).
- Security: processing of a specially crafted mp4 file with the
ngx_http_mp4_module might result in worker process memory disclosure (CVE-2018-16845 bsc#1115015).
- Bugfix: working with gRPC backends might result in excessive memory
consumption.
Comments 0