haproxy 2.0.31-0ubuntu0.2 source package in Ubuntu
Changelog
haproxy (2.0.31-0ubuntu0.2) focal-security; urgency=medium
* SECURITY UPDATE: incorrect handling of empty content-length header
- debian/patches/CVE-2023-40225-1.patch: add a proper check for empty
content-length header buffer in src/h1.c and src/h2.c. Also add
tests for it in reg-tests/http-messaging/h1_to_h1.vtc and
reg-tests/http-messaging/h2_to_h1.vtc.
- debian/patches/CVE-2023-40225-2.patch: add a check for leading zero
in content-length header buffer in src/h1.c and src/h2.c. Also add
tests in reg-tests/http-rules/h1or2_to_h1c.vtc.
- CVE-2023-40225
-- Rodrigo Figueiredo Zaiden <email address hidden> Wed, 16 Aug 2023 18:14:42 -0300
Upload details
- Uploaded by:
- Rodrigo Figueiredo Zaiden
- Uploaded to:
- Focal
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- net
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| haproxy_2.0.31.orig.tar.gz | 2.6 MiB | 240347006c5bc9f62443c95606a88bad0cc6fb174452fbe5a175a519e3946ad9 |
| haproxy_2.0.31-0ubuntu0.2.debian.tar.xz | 73.2 KiB | 723508332625724241d5060832b9824677849b00fc9b17dba03fe6da862f8cb6 |
| haproxy_2.0.31-0ubuntu0.2.dsc | 2.1 KiB | 8d1b473aa363111f835ae480a0558497c55a05fda3f069c2eef6ba39ae08690b |
Available diffs
Binary packages built by this source
- haproxy: fast and reliable load balancing reverse proxy
HAProxy is a TCP/HTTP reverse proxy which is particularly suited for high
availability environments. It features connection persistence through HTTP
cookies, load balancing, header addition, modification, deletion both ways. It
has request blocking capabilities and provides interface to display server
status.
- haproxy-dbgsym: debug symbols for haproxy
- haproxy-doc: fast and reliable load balancing reverse proxy (HTML documentation)
HAProxy is a TCP/HTTP reverse proxy which is particularly suited for high
availability environments. It features connection persistence through HTTP
cookies, load balancing, header addition, modification, deletion both ways. It
has request blocking capabilities and provides interface to display server
status.
.
This package contains the HTML documentation for haproxy.
- vim-haproxy: syntax highlighting for HAProxy configuration files
The vim-haproxy package provides filetype detection and syntax highlighting
for HAProxy configuration files.
.
As per the Debian vim policy, installed addons are not activated
automatically, but the "vim-addon-manager" tool can be used for this purpose.
