stable

nginx-1.20.0-2.fc33

FEDORA-2021-10c1cd4cba created by heffer 3 years ago for Fedora 33

Note that the ownership of log files has changed to root:root and the mode changed to 700 (from 770) to address CVE-2016-1247. This should not affect general operation, as this is the default for log directories and also what httpd uses but if you use external tools to process the log files you may want to check continued operation after this update.

Upstream changelog:

nginx-1.20.0 stable version has been released, incorporating new features and bug fixes from the 1.19.x mainline branch — including OCSP validation of client SSL certificates, the ssl_reject_handshake and ssl_conf_command directives, simplified and improved handling of HTTP/2 connections with the lingering_close, keepalive_timeout, and keepalive_requests directives, the keepalive_time directive, stricter handling of upstream server responses, cookie flags handling, cache clearing based on the minimum amount of free space, PROXY protocol support from clients and to backend servers in the mail proxy, proxying SMTP authentication, the set directive in the stream module, and more.


nginx-1.20.0 stable version has been released, incorporating new features and bug fixes from the 1.19.x mainline branch — including OCSP validation of client SSL certificates, the ssl_reject_handshake and ssl_conf_command directives, simplified and improved handling of HTTP/2 connections with the lingering_close, keepalive_timeout, and keepalive_requests directives, the keepalive_time directive, stricter handling of upstream server responses, cookie flags handling, cache clearing based on the minimum amount of free space, PROXY protocol support from clients and to backend servers in the mail proxy, proxying SMTP authentication, the set directive in the stream module, and more.

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2021-10c1cd4cba

This update has been submitted for testing by heffer.

3 years ago

This update's test gating status has been changed to 'ignored'.

3 years ago

This update's test gating status has been changed to 'waiting'.

3 years ago

This update has obsoleted nginx-1.20.0-1.fc33, and has inherited its bugs and notes.

3 years ago

This update's test gating status has been changed to 'ignored'.

3 years ago

This update has been pushed to testing.

3 years ago

This update can be pushed to stable now if the maintainer wishes

3 years ago

This update has been submitted for stable by bodhi.

3 years ago

This update has been pushed to stable.

3 years ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
3 years ago
in testing
3 years ago
in stable
3 years ago
BZ#1390183 CVE-2016-1247 nginx: Local privilege escalation via log files [fedora-all]
0
0
BZ#1565377 Service reload should check configuration file
0
0
BZ#1683388 Log file ownership created by logrotate inconsistent with the one created by systemd
0
0
BZ#1708799 Drop nginx requirement on nginx-all-modules
0
0
BZ#1834452 Enable --with-compat configure option
0
0
BZ#1869026 nginx.service fails to parse /run/nginx.pid
0
0
BZ#1943779 nginx.service wants wrong network target - causes race condition on boot
0
0
BZ#1944738 nginx-1.20.0 is available
0
0

Automated Test Results