Hi folks,
Tengine-1.4.6 (development version) has been released.
You can either checkout the source code from github:
GitHub - alibaba/tengine: A distribution of Nginx with some advanced features or download the tar ball directly:
http://tengine.taobao.org/download/tengine-1.4.6.tar.gz
We have merged the changes from nginx-1.2.9 which fixed the security
problem CVE-2013-2070. Contents of worker process memory might be
disclosed if HTTP backend server returned specially crafted response.
This could cause denial of service or a disclosure of memory.
If you are using Tengine-1.4.x and proxy_pass to untrusted upstream HTTP
servers, please upgrade to this version as soon as possible!
Regards,