Babban reshe na nginx 1.27.1 an fito da shi, wanda a ciki ya ci gaba da ci gaba da sabbin abubuwa, da kuma sakin madaidaicin madaidaicin reshe na nginx 1.22.1, wanda kawai ya haɗa da canje-canjen da suka danganci kawar da manyan kurakurai da ƙari. rauni. Sabuntawa suna gyara rauni (CVE-2024-7347) a cikin ngx_http_mp4_module module, wanda ke haifar da faɗuwar aiki yayin sarrafa fayil ɗin MP4 na musamman. Matsalar tana bayyana farawa daga sakin 1.5.13 lokacin gina nginx tare da ngx_http_mp4_module module (ba a gina ta ta tsohuwa ba) da amfani da umarnin mp4 a cikin saitunan. Don gyara lahani a cikin tsoffin juzu'in, zaku iya amfani da faci.
Baya ga raunin da ya faru, sakin nginx 1.27.1 ya kuma gyara kurakurai a cikin aiwatar da ka'idar HTTP/3, ya matsar da mai gudanarwa a cikin tsarin rafi zuwa nau'in zaɓi, kuma ya warware matsalar tare da yin watsi da sabbin hanyoyin haɗin HTTP/2 lokacin da Hanyoyin ma'aikata suna ƙarewa lafiya.
source: budenet.ru
