Maxim Dounin mdounin at
Tue Nov 19 15:01:01 UTC 2013

Changes with nginx 1.4.4                                         19 Nov 2013

    *) Security: a character following an unescaped space in a request line
       was handled incorrectly (CVE-2013-4547); the bug had appeared in
       Thanks to Ivan Fratric of the Google Security Team.

Maxim Dounin

More information about the nginx mailing list