AU: 1 updated - nginx-service

[skip ci] https://gist.github.com/Pilskalns/1b0f0584554f6e98b14aca7f2fec2230/b7dcb5ab85db309b3bc1e6a61b240831f3b42067

nginx-service/nginx-service.nuspec

@@ -4,15 +4,15 @@
   <metadata>
 	<!-- == PACKAGE SPECIFIC SECTION == -->
     <id>nginx-service</id>
-    <version>1.22.1</version>
+    <version>1.24.0</version>
     <packageSourceUrl>https://github.com/Pilskalns/choco-au-packages/tree/master/nginx-service</packageSourceUrl>
     <owners>Andzs Pilskalns</owners>
 	<!-- == SOFTWARE SPECIFIC SECTION == -->
     <title>nginx service</title>
     <authors>Igor Sysoev</authors>
     <projectUrl>http://nginx.org/</projectUrl>
     <iconUrl>http://cdn.rawgit.com/Pilskalns/choco-au-packages/master/nginx-service/nginx-service.png</iconUrl>
-    <copyright>2022 &#169; Nginx, Inc.</copyright>
+    <copyright>2023 &#169; Nginx, Inc.</copyright>
     <licenseUrl>http://nginx.org/LICENSE</licenseUrl>
     <requireLicenseAcceptance>false</requireLicenseAcceptance>
     <projectSourceUrl>https://trac.nginx.org/nginx/browser</projectSourceUrl>
@@ -57,10 +57,7 @@ On default, the service will autostart with Windows. To disable this use Service
 
 See the [nginx.org](https://nginx.org) for more detailed documentation.
 ]]></description>
-	<releaseNotes><![CDATA[*) Security: processing of a specially crafted mp4 file by the
-   ngx_http_mp4_module might cause a worker process crash, worker
-   process memory disclosure, or might have potential other impact
-   (CVE-2022-41741, CVE-2022-41742).]]></releaseNotes>
+	<releaseNotes><![CDATA[*) 1.24.x stable branch.]]></releaseNotes>
     <dependencies>
 		  <dependency id="nssm" version="2.24.0" />
     </dependencies>

nginx-service/nginx-service.nuspec.mainline

@@ -4,15 +4,15 @@
   <metadata>
 	<!-- == PACKAGE SPECIFIC SECTION == -->
     <id>nginx-service</id>
-    <version>1.23.2-mainline</version>
+    <version>1.23.4-mainline</version>
     <packageSourceUrl>https://github.com/Pilskalns/choco-au-packages/tree/master/nginx-service</packageSourceUrl>
     <owners>Andzs Pilskalns</owners>
 	<!-- == SOFTWARE SPECIFIC SECTION == -->
     <title>nginx service</title>
     <authors>Igor Sysoev</authors>
     <projectUrl>http://nginx.org/</projectUrl>
     <iconUrl>http://cdn.rawgit.com/Pilskalns/choco-au-packages/master/nginx-service/nginx-service.png</iconUrl>
-    <copyright>2022 &#169; Nginx, Inc.</copyright>
+    <copyright>2023 &#169; Nginx, Inc.</copyright>
     <licenseUrl>http://nginx.org/LICENSE</licenseUrl>
     <requireLicenseAcceptance>false</requireLicenseAcceptance>
     <projectSourceUrl>https://trac.nginx.org/nginx/browser</projectSourceUrl>
@@ -57,37 +57,48 @@ On default, the service will autostart with Windows. To disable this use Service
 
 See the [nginx.org](https://nginx.org) for more detailed documentation.
 ]]></description>
-	<releaseNotes><![CDATA[*) Security: processing of a specially crafted mp4 file by the
-   ngx_http_mp4_module might cause a worker process crash, worker
-   process memory disclosure, or might have potential other impact
-   (CVE-2022-41741, CVE-2022-41742).
+	<releaseNotes><![CDATA[*) Change: now TLSv1.3 protocol is enabled by default.
 
-*) Feature: the "$proxy_protocol_tlv_..." variables.
+*) Change: now nginx issues a warning if protocol parameters of a
+   listening socket are redefined.
 
-*) Feature: TLS session tickets encryption keys are now automatically
-   rotated when using shared memory in the "ssl_session_cache"
-   directive.
+*) Change: now nginx closes connections with lingering if pipelining was
+   used by the client.
 
-*) Change: the logging level of the "bad record type" SSL errors has
-   been lowered from "crit" to "info".
-   Thanks to Murilo Andrade.
+*) Feature: byte ranges support in the ngx_http_gzip_static_module.
 
-*) Change: now when using shared memory in the "ssl_session_cache"
-   directive the "could not allocate new session" errors are logged at
-   the "warn" level instead of "alert" and not more often than once per
-   second.
+*) Bugfix: port ranges in the "listen" directive did not work; the bug
+   had appeared in 1.23.3.
+   Thanks to Valentin Bartenev.
 
-*) Bugfix: nginx/Windows could not be built with OpenSSL 3.0.x.
+*) Bugfix: incorrect location might be chosen to process a request if a
+   prefix location longer than 255 characters was used in the
+   configuration.
 
-*) Bugfix: in logging of the PROXY protocol errors.
-   Thanks to Sergey Brester.
+*) Bugfix: non-ASCII characters in file names on Windows were not
+   supported by the ngx_http_autoindex_module, the ngx_http_dav_module,
+   and the "include" directive.
 
-*) Workaround: shared memory from the "ssl_session_cache" directive was
-   spent on sessions using TLS session tickets when using TLSv1.3 with
-   OpenSSL.
+*) Change: the logging level of the "data length too long", "length too
+   short", "bad legacy version", "no shared signature algorithms", "bad
+   digest length", "missing sigalgs extension", "encrypted length too
+   long", "bad length", "bad key update", "mixed handshake and non
+   handshake data", "ccs received early", "data between ccs and
+   finished", "packet length too long", "too many warn alerts", "record
+   too small", and "got a fin before a ccs" SSL errors has been lowered
+   from "crit" to "info".
 
-*) Workaround: timeout specified with the "ssl_session_timeout"
-   directive did not work when using TLSv1.3 with OpenSSL or BoringSSL.]]></releaseNotes>
+*) Bugfix: a socket leak might occur when using HTTP/2 and the
+   "error_page" directive to redirect errors with code 400.
+
+*) Bugfix: messages about logging to syslog errors did not contain
+   information that the errors happened while logging to syslog.
+   Thanks to Safar Safarly.
+
+*) Workaround: "gzip filter failed to use preallocated memory" alerts
+   appeared in logs when using zlib-ng.
+
+*) Bugfix: in the mail proxy server.]]></releaseNotes>
     <dependencies>
 		  <dependency id="nssm" version="2.24.0" />
     </dependencies>

nginx-service/nginx-service.nuspec.stable

@@ -4,15 +4,15 @@
   <metadata>
 	<!-- == PACKAGE SPECIFIC SECTION == -->
     <id>nginx-service</id>
-    <version>1.22.1</version>
+    <version>1.24.0</version>
     <packageSourceUrl>https://github.com/Pilskalns/choco-au-packages/tree/master/nginx-service</packageSourceUrl>
     <owners>Andzs Pilskalns</owners>
 	<!-- == SOFTWARE SPECIFIC SECTION == -->
     <title>nginx service</title>
     <authors>Igor Sysoev</authors>
     <projectUrl>http://nginx.org/</projectUrl>
     <iconUrl>http://cdn.rawgit.com/Pilskalns/choco-au-packages/master/nginx-service/nginx-service.png</iconUrl>
-    <copyright>2022 &#169; Nginx, Inc.</copyright>
+    <copyright>2023 &#169; Nginx, Inc.</copyright>
     <licenseUrl>http://nginx.org/LICENSE</licenseUrl>
     <requireLicenseAcceptance>false</requireLicenseAcceptance>
     <projectSourceUrl>https://trac.nginx.org/nginx/browser</projectSourceUrl>
@@ -57,10 +57,7 @@ On default, the service will autostart with Windows. To disable this use Service
 
 See the [nginx.org](https://nginx.org) for more detailed documentation.
 ]]></description>
-	<releaseNotes><![CDATA[*) Security: processing of a specially crafted mp4 file by the
-   ngx_http_mp4_module might cause a worker process crash, worker
-   process memory disclosure, or might have potential other impact
-   (CVE-2022-41741, CVE-2022-41742).]]></releaseNotes>
+	<releaseNotes><![CDATA[*) 1.24.x stable branch.]]></releaseNotes>
     <dependencies>
 		  <dependency id="nssm" version="2.24.0" />
     </dependencies>

nginx-service/tools/VERIFICATION.ps1

@@ -18,7 +18,7 @@ Invoke-WebRequest "https://nginx.org/keys/mdounin.key" -UseBasicParsing -OutFile
 
 # Get original signature from
 # https://nginx.org/en/download.html
-Invoke-WebRequest "https://nginx.org/download/nginx-1.22.1.zip.asc" -UseBasicParsing -OutFile "$toolsDir\..\bin\nginx-1.22.1.zip.asc"
+Invoke-WebRequest "https://nginx.org/download/nginx-1.24.0.zip.asc" -UseBasicParsing -OutFile "$toolsDir\..\bin\nginx-1.24.0.zip.asc"
 
 ### Preperation
 # Check that we have GPG 
@@ -27,4 +27,4 @@ choco install gpg4win -y | out-null
 ### Verify
 # Import keys and verify ZIP file against the signature
 gpg --import "$toolsDir\..\bin\mdounin.key"
-gpg --verify "$toolsDir\..\bin\nginx-1.22.1.zip.asc" "$toolsDir\..\bin\nginx.zip"
+gpg --verify "$toolsDir\..\bin\nginx-1.24.0.zip.asc" "$toolsDir\..\bin\nginx.zip"

nginx-service/tools/VERIFICATION.txt

@@ -3,12 +3,12 @@ VERIFICATION
 Nginx for each release provide a ZIP file and .asc signature file.
 Files are listed on the official page http://nginx.org/en/download.html
 
-This package bin\ content includes the release ZIP file, obtained from https://nginx.org/download/nginx-1.22.1.zip
+This package bin\ content includes the release ZIP file, obtained from https://nginx.org/download/nginx-1.24.0.zip
 
 Package also includes VERIFICATION.ps1, which essentially does the following:
 
     1. Downloads Maxim Dounin’s publick key from https://nginx.org/en/pgp_keys.html
-    2. Downloads signature for this release: https://nginx.org/download/nginx-1.22.1.zip.asc
+    2. Downloads signature for this release: https://nginx.org/download/nginx-1.24.0.zip.asc
     3. Verifies signature authenticity against bin\nginx.zip
 
 File 'LICENSE.txt' is obtained from <https://nginx.org/LICENSE>