ngtcp2 1.17.0 rpms released and added to all supported platforms.
ngtcp2 libraries stack built with OpenSSL 3.5.1. quic client name is osslclient.
ngtcp2 1.17.0 rpms released and added to all supported platforms.
ngtcp2 libraries stack built with OpenSSL 3.5.1. quic client name is osslclient.
nginx 1.29.2 Mainline with HTTP/3 support added to EL7, EL8, EL9, EL10 repositories. brotli compression module from Google, http2, ngx cache purge and ngx http geoip2 modules added or built-in. OpenSSL built dynamically using official OpenSSL 3.5.1 with QUIC support.
Our OpenSSL 3.5.1 builds break compatibility with nginx 1.28.x and earlier versions, as they are compiled against quictls project with their own APIs. Thus, to upgrade OpenSSL QUIC libs, please use nginx >= 1.29.0.
Added a previously missed changes entry in 1.29.1 relnotes. by @pluknet in #844
Removed legacy charset directive from default config example. by @MohamedKarrab in #829
QUIC: fixed ssl_reject_handshake error handling. by @pluknet in #889
Updated link to xslscript. by @pluknet in #854
Fixed inaccurate index directive error report by @willmafh in #881
SNI: using ClientHello callback. by @pluknet in #562
AWS-LC support changes by @pluknet in #848
Upstream: overflow detection in Cache-Control delta-seconds. by @pluknet in #898
Mail: xtext encoding (RFC 3461) in XCLIENT LOGIN. by @pluknet in #893
SSL: fixed «key values mismatch» with object cache inheritance. by @pluknet in #740
nginx-1.29.2 changes by @pluknet in #919
ngtcp2 1.16.0, nghttp3 1.12.0 rpms released and added to all supported platforms.
All the libraries stack built with OpenSSL 3.5.1, including ngtcp2 (quic client name changed from qtlsclient to osslclient).
Delivery of ngtcp2 for EL9 delayed because of build errors, other platforms received packages on 24.09.2025.
nghttp2 1.67.1 rpms released and added to all supported platforms.
nghttp2 1.67.0 rpms released and added to all supported platforms
mod_http2 v2.0.35 rpms released and added to all supported platforms.
Changes:
New directive H2MaxStreamErrors to control how much bad behaviour by clients is tolerated before the connection is closed.
nginx 1.29.1 Mainline with HTTP/3 support added to EL7, EL8, EL9, EL10 repositories. brotli compression module from Google, http2, ngx cache purge and ngx http geoip2 modules added or built-in. OpenSSL built dynamically using official OpenSSL 3.5.1 with QUIC support.
Our OpenSSL 3.5.1 builds break compatibility with nginx 1.28.x and earlier versions, as they are compiled against quictls project with their own APIs. Thus, to upgrade OpenSSL QUIC libs, please use nginx >= 1.29.0.
mod_http2 v2.0.34 rpms released and added to all supported platforms.
Changes:
Added support for «ProxyErrorOverride» directive in mod_proxy_http2.
Fix a bug in calculating the log2 value of integers, used in push
diaries and proxy window size calculations. Apache PR69741.
[Benjamin P. Kallus]
ngtcp2 1.14.0, nghttp3 1.11.0 rpms released and added to all supported platforms.
All the libraries stack built with OpenSSL 3.5.0, including ngtcp2 (quic client name changed from qtlsclient to osslclient).
Apache httpd 2.4.65 added to the repository.
Changes:
*) SECURITY: CVE-2025-54090: Apache HTTP Server: 'RewriteCond expr'
always evaluates to true in 2.4.64 (cve.mitre.org)
A bug in Apache HTTP Server 2.4.64 results in all "RewriteCond
expr ..." tests evaluating as "true".
Users are recommended to upgrade to version 2.4.65, which fixes
the issue.