** Description changed: + [Impact] + + There is a segmentation fault bug in the nginx-auth-pam module that + exists for nginx-extras. It usually happens when you are adding a + header via the nginx configuration option `add_header`, however this is + actually a bug in the nginx-auth-pam module. + + [Test Case] + + Use `add_header Via "1.1 keys.example.org:80 (nginx)";` or similar Via + header with a proxy_pass while using nginx-extras. This typically will + end up with a segmentation fault. + + Using the attached debdiff, which applies an upstream fix for this, you + will not encounter a segmentation fault. + + (A more detailed test case is unavailable, however there are example + configurations and situations where this can trigger on the Debian bug) + + [Regression Potential] + + According to the upstream commit: + + "ngx_module_t commands array should end with a ngx_null_command." + + There should be no regression risk for this as the module is supposed to + end with the command, but previously did not. + + [Other Info] + + This was test-built inside Saucy sbuild chroots for i386 and amd64 without incident by myself. + + [Original Description] + Please see bug http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=721702 would be nice if we can update nginx in saucy, so this bug no longer persists!
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1264674 Title: nginx segfault when adding add_header in configuration To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/nginx/+bug/1264674/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
