Nginx has released version 1.29.8 of its mainline branch, which includes critical compatibility updates for OpenSSL 4.0 to prevent issues for users with newer cryptographic libraries. This update also addresses security vulnerabilities related to integer underflows in charset parsing and introduces a new max_headers directive for better control over request sizes. Additionally, the release fixes specific bugs affecting authentication ports and geo block includes, ensuring accurate logging and access control. System administrators are advised to test these changes in a staging environment before deploying them to production to avoid unexpected downtime
Nginx 1.29.8 released
The latest Nginx mainline update arrives with critical OpenSSL 4.0 compatibility that prevents breakages for those already running newer cryptographic libraries. Security improvements address integer underflows in charset parsing while a new max_headers directive gives operators better control over request sizes. Specific bugs affecting authentication ports and geo block includes are now fixed so logging errors do not creep back into production logs. Staging these changes before pushing them live remains the only sane way to avoid unexpected downtime during the transition.
