* Dropped:
- d/t/control, d/t/proxy-localhost: simple DEP8 test to actually
generate traffic through haproxy.
[Added in 2.0.4-1, but not mentioned in d/changelog]
New changelog entries:
* New upstream release. Upload to unstable.
- BUG/MAJOR: http/sample: use a static buffer for raw -> htx conversion
- BUG/MAJOR: queue/threads: avoid an AB/BA locking issue in process_srv_queue()
* d/haproxy.cfg: update default cipher lists to more secure defaults.
TLSv1.0 and TLSv1.1 are disabled, as well as TLS tickets (they are
breaking forward secrecy unless correctly rotated).
Closes: #932763.
e6fd9f8...
by
Apollon Oikonomopoulos <email address hidden>
Import patches-unapplied version 2.0.3-1 to debian/experimental
New changelog entries:
* New upstream version.
- BUG/CRITICAL: http_ana: Fix parsing of malformed cookies which start by a delimiter (CVE-2019-14241)
- BUG/MEDIUM: checks: Don't attempt to receive data if we already subscribed.
- BUG/MEDIUM: http/htx: unbreak option http_proxy
- DOC: htx: Update comments in HTX files
- BUG/MEDIUM: mux-h1: Trim excess server data at the end of a transaction
- BUG/MEDIUM: tcp-checks: do not dereference inexisting conn_stream
* Bump Standards-Version to 4.4.0; no changes needed
New changelog entries:
* New upstream version.
- BUG/MAJOR: sample: Wrong stick-table name parsing in "if/unless" ACL condition.
- BUG/MAJOR: mux-h1: Don't crush trash chunk area when outgoing message is formatted
* d/rules: fix crash during reload due to libgcc_s.so missing when
chrooted.
New changelog entries:
* New upstream version.
- BUG/MAJOR: map/acl: real fix segfault during show map/acl on CLI
- BUG/MAJOR: mux-h2: do not add a stream twice to the send list