[ubuntu/oracular-proposed] haproxy 2.9.9-1ubuntu2 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Thu Sep 12 16:37:14 UTC 2024 

haproxy (2.9.9-1ubuntu2) oracular; urgency=medium

  * SECURITY UPDATE: remote denial of service issue
    - debian/patches/CVE-2024-45506-1.patch: try to clear DEM_MROOM and
      MUX_MFULL at more places in src/mux_h2.c.
    - debian/patches/CVE-2024-45506-2.patch: always clear MUX_MFULL and
      DEM_MROOM when clearing the mbuf in src/mux_h2.c.
    - CVE-2024-45506

Date: Thu, 12 Sep 2024 12:04:03 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/haproxy/2.9.9-1ubuntu2
-------------- next part --------------
Format: 1.8
Date: Thu, 12 Sep 2024 12:04:03 -0400
Source: haproxy
Built-For-Profiles: noudeb
Architecture: source
Version: 2.9.9-1ubuntu2
Distribution: oracular
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Changes:
 haproxy (2.9.9-1ubuntu2) oracular; urgency=medium
 .
   * SECURITY UPDATE: remote denial of service issue
     - debian/patches/CVE-2024-45506-1.patch: try to clear DEM_MROOM and
       MUX_MFULL at more places in src/mux_h2.c.
     - debian/patches/CVE-2024-45506-2.patch: always clear MUX_MFULL and
       DEM_MROOM when clearing the mbuf in src/mux_h2.c.
     - CVE-2024-45506
Checksums-Sha1:
 877a28a00f61f8b688f614c8198abe8cffdaae03 2437 haproxy_2.9.9-1ubuntu2.dsc
 4ffcdcf143ae00919fe2a53fc7a294860c9e97f1 77576 haproxy_2.9.9-1ubuntu2.debian.tar.xz
 37fb6489eb066531c77ab243df07ba8784ff134c 8411 haproxy_2.9.9-1ubuntu2_source.buildinfo
Checksums-Sha256:
 0664acb73e35e5021db214fc5195c08ef77f838088f80e7836bc62b71e0825f7 2437 haproxy_2.9.9-1ubuntu2.dsc
 7d3eebf6c8fb11bae7d390638c46f6ba6e3484714d22832b4384f728173e6076 77576 haproxy_2.9.9-1ubuntu2.debian.tar.xz
 6388b0cd4f2466613d3d83ff47a722ff077571d301d946df6fc67ba315e4204d 8411 haproxy_2.9.9-1ubuntu2_source.buildinfo
Files:
 27539742b848bca43e6d16a81f8591fe 2437 net optional haproxy_2.9.9-1ubuntu2.dsc
 2ea044d6440f05cde41263341cb6fb7a 77576 net optional haproxy_2.9.9-1ubuntu2.debian.tar.xz
 cd12238c7595764fd04ab75e7411ad73 8411 net optional haproxy_2.9.9-1ubuntu2_source.buildinfo
Original-Maintainer: Debian HAProxy Maintainers <team+haproxy at tracker.debian.org>

More information about the oracular-changes mailing list