-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Mon, 13 Jul 2020 11:40:49 +0200
Source: nginx
Binary: nginx nginx-doc nginx-common nginx-full nginx-light nginx-extras libnginx-mod-http-geoip libnginx-mod-http-image-filter libnginx-mod-http-xslt-filter libnginx-mod-mail libnginx-mod-stream libnginx-mod-http-perl libnginx-mod-http-auth-pam libnginx-mod-http-lua libnginx-mod-http-ndk libnginx-mod-nchan libnginx-mod-http-echo libnginx-mod-http-upstream-fair libnginx-mod-http-headers-more-filter libnginx-mod-http-cache-purge libnginx-mod-http-fancyindex libnginx-mod-http-uploadprogress libnginx-mod-http-subs-filter libnginx-mod-http-dav-ext
Architecture: source
Version: 1.10.3-1+deb9u5
Distribution: stretch-security
Urgency: high
Maintainer: Debian Nginx Maintainers <pkg-nginx-maintainers@lists.alioth.debian.org>
Changed-By: Sylvain Beucler <beuc@debian.org>
Description:
libnginx-mod-http-auth-pam - PAM authentication module for Nginx
libnginx-mod-http-cache-purge - Purge content from Nginx caches
libnginx-mod-http-dav-ext - WebDAV missing commands support for Nginx
libnginx-mod-http-echo - Bring echo and more shell style goodies to Nginx
libnginx-mod-http-fancyindex - Fancy indexes module for the Nginx
libnginx-mod-http-geoip - GeoIP HTTP module for Nginx
libnginx-mod-http-headers-more-filter - Set and clear input and output headers for Nginx
libnginx-mod-http-image-filter - HTTP image filter module for Nginx
libnginx-mod-http-lua - Lua module for Nginx
libnginx-mod-http-ndk - Nginx Development Kit module
libnginx-mod-http-perl - Perl module for Nginx
libnginx-mod-http-subs-filter - Substitution filter module for Nginx
libnginx-mod-http-uploadprogress - Upload progress system for Nginx
libnginx-mod-http-upstream-fair - Nginx Upstream Fair Proxy Load Balancer
libnginx-mod-http-xslt-filter - XSLT Transformation module for Nginx
libnginx-mod-mail - Mail module for Nginx
libnginx-mod-nchan - Fast, flexible pub/sub server for Nginx
libnginx-mod-stream - Stream module for Nginx
nginx - small, powerful, scalable web/proxy server
nginx-common - small, powerful, scalable web/proxy server - common files
nginx-doc - small, powerful, scalable web/proxy server - documentation
nginx-extras - nginx web/proxy server (extended version)
nginx-full - nginx web/proxy server (standard version)
nginx-light - nginx web/proxy server (basic version)
Changes:
nginx (1.10.3-1+deb9u5) stretch-security; urgency=high
.
* Non-maintainer upload by the LTS Security Team.
* CVE-2020-11724: ngx_http_lua_subrequest.c allows HTTP request
smuggling, as demonstrated by the ngx.location.capture API.
Checksums-Sha1:
7d23c1061b8c52948ef839828120e9984046b995 3887 nginx_1.10.3-1+deb9u5.dsc
ea6090fe6f63de07619a09e79bb9b7cee5aba6d8 851568 nginx_1.10.3-1+deb9u5.debian.tar.xz
0e176ac4d51794a1aea090b02a221df4f706cc38 22457 nginx_1.10.3-1+deb9u5_amd64.buildinfo
Checksums-Sha256:
3129d12abf5d580cdf7605bee4354a015a4da01b570cd799433b6587c23788b7 3887 nginx_1.10.3-1+deb9u5.dsc
e064967713e83f2d49e78d3b41c2c7f1b49fe263b13373ed791a258fd94c92d7 851568 nginx_1.10.3-1+deb9u5.debian.tar.xz
f92793dc834621406afa704c77e6cfb349b831e006e2d23cd93bda563cc424e0 22457 nginx_1.10.3-1+deb9u5_amd64.buildinfo
Files:
bca4c65f59f8f996d6902fad8975d44e 3887 httpd optional nginx_1.10.3-1+deb9u5.dsc
a9d21f29c889b55771826126a2458e20 851568 httpd optional nginx_1.10.3-1+deb9u5.debian.tar.xz
658da2c71bbc31978fbd3b07df5244d3 22457 httpd optional nginx_1.10.3-1+deb9u5_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----
iQEzBAEBCgAdFiEEQic8GuN/xDR88HkSj/HLbo2JBZ8FAl8VlHwACgkQj/HLbo2J
BZ+RTwgAtJ7DrGIe+sitgwb6lgVAVH1S+X+HpJM+ONMbRBZhItzjdr+382UJDtI+
wabAW9MvSKhDznCr4sQIewl/RGk5ldmYCmMTi1INJWUmv7TkLKnpW7S4sJPDtUPD
HTPGC/IHRSS44q6K3SDxZSUnnqwXsV25+vcerYPsDQACe6lc0RDWTR9PJUxJJ/LH
9Y28k+yyWC71pwl1RNlceSRhvKe5NvujIhBOOV9g6uWmh/f8BykuX0GFv2oZz27Y
6MJouJR9L9XZflBbncVfU0GYADx0DowQRmM01pY1SbTBExDuBU6Kyohq3JgayZSy
CWX9z9JWJMG9ZpWb39uQOa5rxG6IHg==
=9u2T
-----END PGP SIGNATURE-----