today
NGINX_RC 1.31.1.1 - Security And Stability Update
Core Upgrades & Security
- Server Stealth: Added a setting to easily hide the Nginx version token in HTTP response headers.
- Crash & Memory Fixes: Patched critical segmentation faults (QUIC/worker shutdowns), a NULL pointer in the SSL cache, and memory bugs that were corrupting HTTP headers.
Routing & Traffic Management
- URI Rewriting: Added native URI rewriting support and patched a related crash involving query strings.
- Header Control: Introduced the
response_headersoption to easily manage and manipulate HTTP response headers. - Network Fixes: Resolved total IPv6 connection failures for ASGI applications and stopped the
$urivariable from improperly caching. - Large Uploads: Patched payload limits, reliably allowing uploads larger than 4GiB.
Administration & Logging
- Granular Logs: Introduced per-application and conditional route logging to isolate errors and reduce log noise.
- App Fixes: Fixed PHP error handling to correctly return standard 403 and 404 HTTP errors.
- Clean Reloads: Unix domain listen sockets are now properly deleted during server reconfigurations.