Welcome to mirror list, hosted at ThFree Co, Russian Federation.

github.com/nginx/nginx.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorMaxim Dounin <mdounin@mdounin.ru>2022-10-19 11:02:20 +0300
committerMaxim Dounin <mdounin@mdounin.ru>2022-10-19 11:02:20 +0300
commit352a7d2bc4aa6b51e6e5c13f811bf961201c763d (patch)
tree42e4fc3dc9cb9a778a4569eff0f12f97108af572
parent6b022a5556af22b6e18532e547a6ae46b0d8c6ea (diff)
nginx-1.22.1-RELEASErelease-1.22.1
Diffstat
-rw-r--r--docs/xml/nginx/changes.xml22
1 files changed, 22 insertions, 0 deletions
diff --git a/docs/xml/nginx/changes.xml b/docs/xml/nginx/changes.xml
index 3f86e4460..f10b193b8 100644
--- a/docs/xml/nginx/changes.xml
+++ b/docs/xml/nginx/changes.xml
@@ -5,6 +5,28 @@
<change_log title="nginx">
+<changes ver="1.22.1" date="2022-10-19">
+
+<change type="security">
+<para lang="ru">
+обработка специально созданного mp4-файла модулем ngx_http_mp4_module
+могла приводить к падению рабочего процесса,
+отправке клиенту части содержимого памяти рабочего процесса,
+а также потенциально могла иметь другие последствия
+(CVE-2022-41741, CVE-2022-41742).
+</para>
+<para lang="en">
+processing of a specially crafted mp4 file by the ngx_http_mp4_module
+might cause a worker process crash,
+worker process memory disclosure,
+or might have potential other impact
+(CVE-2022-41741, CVE-2022-41742).
+</para>
+</change>
+
+</changes>
+
+
<changes ver="1.22.0" date="2022-05-24">
<change>
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-25 08:54:44 +0300