| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| 0002-Make-sure-signature-stays-the-same-in-all-nginx-buil.patch | Make sure signature stays the same in all nginx builds NGX_HTTP_HEADERS is part of nginx signature. When a dyn modules is loaded the signature of the module is compared to the one of the nginx binary. dyn modules are build from nginx-full, so in order to make them loadable in other flavors we need to make sure all the binaries share the same signature. |
Christos Trochalakis <ctrochalakis@debian.org> | no | 2016-03-30 | ||
| 0003-define_gnu_source-on-other-glibc-based-platforms.patch | Use _GNU_SOURCE on GNU/kFreeBSD Define _GNU_SOURCE not only on GNU/Hurd, but also other glibc-based platforms including GNU/kFreeBSD. |
Steven Chamberlain <stevenc@debian.org> | no | 2016-07-16 | ||
| CVE-2019-20372.patch | [PATCH] Discard request body when redirecting to a URL via error_page. Reported by Bert JW Regeer and Francisco Oca Gonzalez. |
Ruslan Ermilov <ru@nginx.com> | no | 2019-12-23 | ||
| Resolver-fixed-off-by-one-write-in-ngx_resolver_copy.patch | Resolver: fixed off-by-one write in ngx_resolver_copy(). Reported by Luis Merino, Markus Vervier, Eric Sesterhenn, X41 D-Sec GmbH. |
Maxim Dounin <mdounin@mdounin.ru> | no | debian | https://github.com/nginx/nginx/commit/7199ebc203f74fd9e44595474de6bdc41740c5cf | 2021-05-25 |
| CVE-2021-3618.patch | Patch mitigation for CVE-2021-3618 Mail: max_errors directive. . Similarly to smtpd_hard_error_limit in Postfix and smtp_max_unknown_commands in Exim, specifies the number of errors after which the connection is closed. |
no | debian | upstream, http://hg.nginx.org/nginx/rev/ec1071830799 | ||
| CVE-2022-41741_CVE-2022-41742.patch | [PATCH] Mp4: disabled duplicate atoms. Most atoms should not appear more than once in a container. Previously, this was not enforced by the module, which could result in worker process crash, memory corruption and disclosure. |
Roman Arutyunyan <arut@nginx.com> | no | 2022-10-19 |