NGINX App Protect WAF 4.11
September 25, 2024
Warning
Release 4.8.1 cannot be upgraded to v4.11. You must uninstall 4.8.1 and install 4.11. Upgrade is supported for versions prior to 4.8.1.
New features
Important notes
- Starting from this release, CentOS 7.4, Rhel 7.4 and Amazon Linux 2 support has been deprecated.
Resolved issues
- 10775 Fixed - Resolved a threshold calculation in the base64 decoding mechanism.
- 11426 Fixed - Resolved log entry of an XFF header that contains more than one value.
- 11272 Fixed - Resolved an issue where, in certain instances, the original HTTP response code was shown for rejected requests.
- 5302 Fixed - The enforcer leaves an incomplete job when NGINX reloads during DNS resolution.
Supported packages
| Distribution name | Package file |
|---|---|
| Alpine 3.16 / 3.17 | app-protect-32.5.144.0-r1.apk |
| Debian 11 | app-protect_32+5.144.0-1~bullseye_amd64.deb |
| Debian 12 | app-protect_32+5.144.0-1~bookworm_amd64.deb |
| Ubuntu 20.04 | app-protect_32+5.144.0-1~focal_amd64.deb |
| Ubuntu 22.04 | app-protect_32+5.144.0-1~jammy_amd64.deb |
| Ubuntu 24.04 | app-protect_32+5.144.0-1~noble_amd64.deb |
| RHEL 8 and Rocky Linux 8 | app-protect-32+5.144.0-1.el8.ngx.x86_64.rpm |
| RHEL 9 | app-protect-32+5.144.0-1.el9.ngx.x86_64.rpm |
| Oracle Linux 8.1 | app-protect-32+5.144.0-1.el8.ngx.x86_64.rpm |