bugfix: applied the patch for nginx security advisory (CVE-2016-4450).

also bumped version to 1.9.7.5.
2024-10-13 00:29:41 +00:00 · 2016-05-31 13:19:23 -07:00
parent 3041624fbc
commit bf47ba9529
3 changed files with 23 additions and 1 deletions
--- a/patches/patch.2016.write2.txt
+++ b/patches/patch.2016.write2.txt
@ -0,0 +1,15 @@
+--- src/os/unix/ngx_files.c
+++ src/os/unix/ngx_files.c
+@@ -183,6 +183,12 @@ ngx_write_chain_to_file(ngx_file_t *file
+         /* create the iovec and coalesce the neighbouring bufs */
+ 
+         while (cl && vec.nelts < IOV_MAX) {
+
+            if (ngx_buf_special(cl->buf)) {
+                cl = cl->next;
+                continue;
+            }
+
+             if (prev == cl->buf->pos) {
+                 iov->iov_len += cl->buf->last - cl->buf->pos;
+