[ubuntu/eoan-security] haproxy 2.0.5-1ubuntu0.2 (Accepted)
Leonidas S. Barbosa
leo.barbosa at canonical.com
Tue Nov 5 12:52:48 UTC 2019
haproxy (2.0.5-1ubuntu0.2) eoan-security; urgency=medium
* SECURITY UPDATE: Messages with transfer-encoding header missing "chunked"
value were not being correctly rejected
- debian/patches/CVE-2019-18277.patch: also reject messages where
"chunked" is missing from transfer-enoding in.
src/proto_http.c.
- CVE-2019-18277
Date: 2019-11-04 15:48:17.663178+00:00
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
https://launchpad.net/ubuntu/+source/haproxy/2.0.5-1ubuntu0.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the Eoan-changes
mailing list