[Buildroot] [PATCH] nginx: security bump to 1.15.6

Peter Korsgaard peter at korsgaard.com
Fri Nov 9 13:05:58 UTC 2018

>>>>> "Peter" == Peter Korsgaard <peter at korsgaard.com> writes:

 > Fixes the following security issues:
 > CVE-2018-16843: Excessive memory usage in HTTP/2

 > CVE-2018-16844: Excessive CPU usage in HTTP/2

 > CVE-2018-16845: Memory disclosure in the ngx_http_mp4_module

 > Refreshed patch 0004 + 0007 as they no longer applied cleanly.

 > Signed-off-by: Peter Korsgaard <peter at korsgaard.com>

Committed, thanks.

Bye, Peter Korsgaard

More information about the buildroot mailing list