Ubuntu
trafficserver package

Change logs for trafficserver source package in Noble

  1. Noble (24.04)
  2. Change log 
  • trafficserver (9.2.3+ds-1+deb12u1build4) noble; urgency=medium

  * No-change rebuild for CVE-2024-3094

 -- William Grant <email address hidden>  Mon, 01 Apr 2024 16:10:25 +1100
  • trafficserver (9.2.3+ds-1+deb12u1build3) noble; urgency=medium

  * No-change rebuild against libcurl4t64

 -- Steve Langasek <email address hidden>  Sat, 16 Mar 2024 07:05:38 +0000
  • trafficserver (9.2.3+ds-1+deb12u1build2) noble; urgency=medium

  * No-change rebuild against libssl3t64

 -- Steve Langasek <email address hidden>  Tue, 05 Mar 2024 02:07:17 +0000
  • trafficserver (9.2.3+ds-1+deb12u1build1) noble; urgency=medium

  * No-change rebuild against libhiredis1.1.0

 -- Dan Bungert <email address hidden>  Fri, 26 Jan 2024 10:21:16 -0700
  • trafficserver (9.2.3+ds-1+deb12u1) bookworm-security; urgency=medium

  * Multiple CVE fixes for 9.2.x (Closes: #1054427, Closes: #1053801)
    - CVE-2022-47185: Improper input validation vulnerability
    - CVE-2023-33934: Improper Input Validation vulnerability
    - CVE-2023-39456: Improper Input Validation vulnerability
    - CVE-2023-41752: Exposure of Sensitive Information to an Unauthorized Actor
    - CVE-2023-44487: The HTTP/2 protocol allows a denial of service
  * Refresh d/patches for 9.2.3 release
  * Add patch to workaround missing sphinxcontrib.jquery module
  * Update d/trafficserver-experimental-plugins for 9.2.3 release

 -- Jean Baptiste Favre <email address hidden>  Thu, 02 Nov 2023 15:01:39 +0100
  • trafficserver (9.2.3+ds-1) unstable; urgency=medium

  * New upstream version 9.2.3+ds
  * Update d/trafficserver-experimental-plugins for 9.2.3 release
  * CVEs fixes (Closes: #1054427, Closes: #1053801)
    - CVE-2023-39456: Improper Input Validation vulnerability
    - CVE-2023-41752: Exposure of Sensitive Information to an Unauthorized Actor
    - CVE-2023-44487: The HTTP/2 protocol allows a denial of service

 -- Jean Baptiste Favre <email address hidden>  Thu, 02 Nov 2023 13:46:58 +0100
  • trafficserver (9.2.2+ds-1) unstable; urgency=medium

  [ Emanuele Rocca ]
  * Remove myself from Uploaders

  [ Jean Baptiste Favre ]
  * New upstream version 9.2.1+ds
  * Update d/patches for 9.2.2
    - CVE-2022-47185: Improper input validation vulnerability
    - CVE-2023-33934: Improper input validation vulnerability

 -- Jean Baptiste Favre <email address hidden>  Mon, 04 Sep 2023 16:38:33 +0200
  • trafficserver (9.2.1+ds-1build1) mantic; urgency=medium

  * Rebuild against new libyaml-cpp0.8.

 -- Gianfranco Costamagna <email address hidden>  Sat, 02 Sep 2023 07:21:28 +0200