Welcome! Log In Create A New Profile

Advanced

[nginx-announce] nginx-1.21.0

Posted by Maxim Dounin 
Forum List Message List New Topic
Maxim Dounin
[nginx-announce] nginx-1.21.0
May 25, 2021 11:38AM
Changes with nginx 1.21.0 25 May 2021

*) Security: 1-byte memory overwrite might occur during DNS server
response processing if the "resolver" directive was used, allowing an
attacker who is able to forge UDP packets from the DNS server to
cause worker process crash or, potentially, arbitrary code execution
(CVE-2021-23017).

*) Feature: variables support in the "proxy_ssl_certificate",
"proxy_ssl_certificate_key" "grpc_ssl_certificate",
"grpc_ssl_certificate_key", "uwsgi_ssl_certificate", and
"uwsgi_ssl_certificate_key" directives.

*) Feature: the "max_errors" directive in the mail proxy module.

*) Feature: the mail proxy module supports POP3 and IMAP pipelining.

*) Feature: the "fastopen" parameter of the "listen" directive in the
stream module.
Thanks to Anbang Wen.

*) Bugfix: special characters were not escaped during automatic redirect
with appended trailing slash.

*) Bugfix: connections with clients in the mail proxy module might be
closed unexpectedly when using SMTP pipelining.


--
Maxim Dounin
http://nginx.org/
_______________________________________________
nginx-announce mailing list
nginx-announce@nginx.org
http://mailman.nginx.org/mailman/listinfo/nginx-announce
Reply Quote
Newer Topic Older Topic
Sorry, you do not have permission to post/reply in this forum.

Online Users

Guests: 285
Record Number of Users: 8 on April 13, 2023
Record Number of Guests: 421 on December 02, 2018
Powered by nginx      Powered by FreeBSD      PHP Powered      Powered by MariaDB      ipv6 ready