haproxy 2.6.9-1ubuntu1.1 source package in Ubuntu

Changelog

haproxy (2.6.9-1ubuntu1.1) lunar-security; urgency=medium

  * SECURITY UPDATE: incorrect handling of empty content-length header
    - debian/patches/CVE-2023-40225-1.patch: add a proper check for empty
      content-length header buffer in src/h1.c and src/http.c. Also add
      tests for it in reg-tests/http-messaging/h1_to_h1.vtc and
      reg-tests/http-messaging/h2_to_h1.vtc.
    - debian/patches/CVE-2023-40225-2.patch: add a check for leading zero
      in content-length header buffer in src/h1.c and src/http.c. Also add
      tests in reg-tests/http-rules/h1or2_to_h1c.vtc.
    - CVE-2023-40225

 -- Rodrigo Figueiredo Zaiden <email address hidden>  Tue, 15 Aug 2023 12:16:02 -0300

Upload details

Uploaded by:
Rodrigo Figueiredo Zaiden
Uploaded to:
Lunar
Original maintainer:
Ubuntu Developers
Architectures:
any all
Section:
net
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Lunar updates main net
Lunar security main net

Downloads

File Size SHA-256 Checksum
haproxy_2.6.9.orig.tar.gz 3.9 MiB f01a1c5f465dc1b5cd175d0b28b98beb4dfe82b5b5b63ddcc68d1df433641701
haproxy_2.6.9-1ubuntu1.1.debian.tar.xz 76.7 KiB bb416977c49303e12adaccdfeca5eb0cc3eedfad3cd7396e8634f31e54b6eac7
haproxy_2.6.9-1ubuntu1.1.dsc 2.1 KiB c118f02b300d765397217785de34158c2c592266e282ecf570ec81f02dbd97c9

View changes file

Binary packages built by this source

haproxy: fast and reliable load balancing reverse proxy

 HAProxy is a TCP/HTTP reverse proxy which is particularly suited for high
 availability environments. It features connection persistence through HTTP
 cookies, load balancing, header addition, modification, deletion both ways. It
 has request blocking capabilities and provides interface to display server
 status.

haproxy-dbgsym: debug symbols for haproxy
haproxy-doc: fast and reliable load balancing reverse proxy (HTML documentation)

 HAProxy is a TCP/HTTP reverse proxy which is particularly suited for high
 availability environments. It features connection persistence through HTTP
 cookies, load balancing, header addition, modification, deletion both ways. It
 has request blocking capabilities and provides interface to display server
 status.
 .
 This package contains the HTML documentation for haproxy.

vim-haproxy: syntax highlighting for HAProxy configuration files

 The vim-haproxy package provides filetype detection and syntax highlighting
 for HAProxy configuration files.
 .
 As per the Debian vim policy, installed addons are not activated
 automatically, but the "vim-addon-manager" tool can be used for this purpose.