---
- branch: pkgsrc-2013Q3
  date: Thu Dec  5 17:43:32 UTC 2013
  files:
  - new: 1.43.2.1
    old: '1.43'
    path: pkgsrc/www/nginx/Makefile
    pathrev: pkgsrc/www/nginx/Makefile@1.43.2.1
    type: modified
  - new: 1.31.2.1
    old: '1.31'
    path: pkgsrc/www/nginx/distinfo
    pathrev: pkgsrc/www/nginx/distinfo@1.31.2.1
    type: modified
  id: 20131205T174332Z.d0faaaaecc869a23c86e59662679fb2d9f0166d8
  log: |
    pull-up to pkgsrc-2013Q3, ticket #4264

    Updated to nginx 1.4.4

    Changes with nginx 1.4.4                                         19 Nov 2013

        *) Security: a character following an unescaped space in a request line
           was handled incorrectly (CVE-2013-4547); the bug had appeared in
           0.8.41.
           Thanks to Ivan Fratric of the Google Security Team.

    Changes with nginx 1.4.3                                         08 Oct 2013

        *) Bugfix: a segmentation fault might occur in a worker process if the
           ngx_http_spdy_module was used with the "client_body_in_file_only"
           directive.

        *) Bugfix: a segmentation fault might occur on start or during
           reconfiguration if the "try_files" directive was used with an empty
           parameter.

        *) Bugfix: the $request_time variable did not work in nginx/Windows.

        *) Bugfix: in the ngx_http_auth_basic_module when using "$apr1$"
           password encryption method.
           Thanks to Markus Linnala.

        *) Bugfix: in the ngx_http_autoindex_module.

        *) Bugfix: in the mail proxy server.
  module: pkgsrc
  subject: 'CVS commit: [pkgsrc-2013Q3] pkgsrc/www/nginx'
  unixtime: '1386265412'
  user: schnoebe