The People of WordPress feature this month shares the story of engineer and developer Tonya Mork.
Archive for February 28th, 2022
Ubuntu 5309-1: virglrenderer vulnerabilities
Several security issues were fixed in virglrenderer.
In the February 2022 survey we received responses from 1,173,621,471 sites across 271,199,972 unique domains and 11,774,714 web-facing computers. This reflects a gain of 5.91 million sites, 1.36 million domains and 73,800 computers.
OpenResty experienced the strongest growth this month, both in overall sites and domains, with increases of 10.4 million sites and 546,000 domains. This represents a large 13.0% increase in its number of sites, but a more modest 1.4% increase in domains. Its market share in the domains metric now stands at 15.1%, an increase of 0.13 percentage points since January.
nginx closely followed OpenResty with a growth of 538,000 domains, helping it to maintain its leading 26.7% market share. nginx also saw strong growth in web-facing computers, which increased by 53,500. In contrast to its gains in these metrics, nginx lost 12.1 million sites this month (-3.2%), however it retains its position as the most commonly used web server with 31.1% of all sites using it.
Cloudflare continues to make strong gains amongst the million busiest websites, where it saw the only notable increases, with an additional 3,200 sites helping to bring its market share up to 19.4%. Apache, Microsoft and nginx all experienced losses in this metric; however, Apache and nginx still hold the top two positions with market shares of 23.3% and 22.1%.
Vendor news
- Apache Tomcat 9.0.59, 10.0.17 and 10.1.0-M11 (alpha) were released on 28 February 2022. Some of the notable changes are common between all three versions, including resolving a regression in a fix for a race condition, and improving the detection of the Linux duplicate accept bug.
- nginx 1.21.6 mainline was released on 25 January 2022. This version contains three bugfixes and no new features.
- njs 0.7.2 was also released with several core bugfixes on 25 January 2022. njs is the subset of the JavaScript language that can be used to extend nginx functionality.
- Cloudflare has agreed to acquire Area 1 Security with the intention of integrating Area 1’s technology into its global network to protect customers from email-based security threats.
- Lighttpd 1.4.64 was released on 19 January 2022. This includes numerous changes, including a security fix for a buffer overflow vulnerability that would have been unlikely to affect most configurations.
Developer | January 2022 | Percent | February 2022 | Percent | Change |
---|---|---|---|---|---|
nginx | 377,019,054 | 32.29% | 364,956,731 | 31.10% | -1.19 |
Apache | 279,709,815 | 23.95% | 277,928,961 | 23.68% | -0.27 |
OpenResty | 80,238,470 | 6.87% | 90,652,376 | 7.72% | 0.85 |
Cloudflare | 60,881,028 | 5.21% | 62,423,819 | 5.32% | 0.11 |
Several security issues were fixed in QEMU.
Ubuntu 5306-1: WebKitGTK vulnerabilities
Several security issues were fixed in WebKitGTK.
Ubuntu 5305-1: MariaDB vulnerabilities
Several security issues were fixed in MariaDB.
Ubuntu 5304-1: PolicyKit vulnerability
policykit-1 could be made to crash if it received specially crafted data.