Hello!
On Tue, Mar 18, 2014 at 8:42 PM, ovidiu wrote:
> A security advisory has been released that describes two major
> vulnerabilities related to nginx:
>
> http://nginx.org/en/security_advisories.html?1.5.12
>
> It would be great if nginx could be updated so it doesn't contain the
> vulnerabilities.
>
Testing a new nginx release will take much longer. I'll just backport
the (1-line) patch for the vulnerability to the upcoming ngx_openresty
1.5.11.1 release. In particular it will get included in the next RC
release, 1.5.11.1 RC3.
Regards,
-agentzh