[ubuntu/bionic-security] haproxy 1.8.8-1ubuntu0.7 (Accepted)
Leonidas S. Barbosa
leo.barbosa at canonical.com
Tue Nov 5 12:52:51 UTC 2019
haproxy (1.8.8-1ubuntu0.7) bionic-security; urgency=medium
* SECURITY UPDATE: Messages with transfer-encoding header missing "chunked"
value were not being correctly rejected
- debian/patches/CVE-2019-18277.patch: also reject messages where
"chunked" is missing from transfer-enoding in.
src/proto_http.c.
- CVE-2019-18277
haproxy (1.8.8-1ubuntu0.6) bionic; urgency=medium
* Fix issues around dh_params when building against openssl 1.1.1
to avoid regressing the minimal key size (LP: 1841936)
- d/p/lp-1841936-BUG-MEDIUM-ssl-tune.ssl.default-dh-param-value-ignor.patch
- d/p/lp-1841936-CLEANUP-ssl-make-ssl_sock_load_dh_params-handle-errc.patch
haproxy (1.8.8-1ubuntu0.5) bionic; urgency=medium
* no change rebuild to pick up openssl 1.1.1 and via that
TLSv1.3 (LP: #1841936)
haproxy (1.8.8-1ubuntu0.4) bionic; urgency=medium
* d/p/stksess-align.patch: Make sure stksess is properly aligned.
(LP: #1804069)
* d/t/control, d/t/proxy-localhost: simple DEP8 test to actually
generate traffic through haproxy.
Date: 2019-11-04 15:40:15.578850+00:00
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
https://launchpad.net/ubuntu/+source/haproxy/1.8.8-1ubuntu0.7
-------------- next part --------------
Sorry, changesfile not available.
More information about the Bionic-changes
mailing list