Public bug reported: NGINX in Debian had 1.9.6, which was the subject of a recent merge, which successfully landed in Xenial.
While there is a Perl transition in progress, and any additional NGINX versions will not immediately be available, it should still be considered the usefulness of updating the nginx version to 1.9.9. Typically, this would be done by a merge from Debian. However, Debian has not released an updated NGINX package, and remains at 1.9.6, even in the Debian git repository (with only two additional changes not yet included as it's not packaged). I would like to see an Ubuntu-specific upload that would have 1.9.9 available for the Xenial repositories, with the potential for a merge later from Debian. ------ Additional considerations during update consideration: * Security Team Mandate: disable HTTP/2 in the package until further notice - This was already incorporated in the 1.9.6 merge, and the 1.9.9 upload should not affect this as the disablement of those features will still be in place. ------ Below are the upstream changelogs (http://nginx.org/en/CHANGES) between 1.9.6 and 1.9.7. Additional features are great, however there are also additional bugs fixed, expecially when proxying data via nginx (by proxy_pass and other directives): Changes with nginx 1.9.9 09 Dec 2015 *) Bugfix: proxying to unix domain sockets did not work when using variables; the bug had appeared in 1.9.8. Changes with nginx 1.9.8 08 Dec 2015 *) Feature: pwritev() support. *) Feature: the "include" directive inside the "upstream" block. *) Feature: the ngx_http_slice_module. *) Bugfix: a segmentation fault might occur in a worker process when using LibreSSL; the bug had appeared in 1.9.6. *) Bugfix: nginx could not be built on OS X in some cases. Changes with nginx 1.9.7 17 Nov 2015 *) Feature: the "nohostname" parameter of logging to syslog. *) Feature: the "proxy_cache_convert_head" directive. *) Feature: the $realip_remote_addr variable in the ngx_http_realip_module. *) Bugfix: the "expires" directive might not work when using variables. *) Bugfix: a segmentation fault might occur in a worker process when using HTTP/2; the bug had appeared in 1.9.6. *) Bugfix: if nginx was built with the ngx_http_v2_module it was possible to use the HTTP/2 protocol even if the "http2" parameter of the "listen" directive was not specified. *) Bugfix: in the ngx_http_v2_module. ** Affects: nginx (Ubuntu) Importance: Wishlist Assignee: Thomas Ward (teward) Status: In Progress -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to nginx in Ubuntu. https://bugs.launchpad.net/bugs/1527709 Title: Update Xenial nginx to 1.9.9 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/nginx/+bug/1527709/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
