ubuntu/+source/haproxy:applied/ubuntu/bionic-security

Last commit made on 2019-11-05
Get this branch:
git clone -b applied/ubuntu/bionic-security https://git.launchpad.net/ubuntu/+source/haproxy
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/bionic-security
Repository:
lp:ubuntu/+source/haproxy

Recent commits

52a4a37... by Leonidas S. Barbosa on 2019-11-04

Import patches-applied version 1.8.8-1ubuntu0.7 to applied/ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: 5788fbce017c4eac4d97559291a83a94b6e5465c
Unapplied parent: 57b89e5109ddd53643a17fc27e234729331bc0d6

New changelog entries:
  * SECURITY UPDATE: Messages with transfer-encoding header missing "chunked"
    value were not being correctly rejected
    - debian/patches/CVE-2019-18277.patch: also reject messages where
      "chunked" is missing from transfer-enoding in.
      src/proto_http.c.
    - CVE-2019-18277

57b89e5... by Leonidas S. Barbosa on 2019-11-04

[PATCH] BUG/MEDIUM: http: also reject messages where "chunked" is

Gbp-Pq: CVE-2019-18277.patch.

29377d0... by Leonidas S. Barbosa on 2019-11-04

[PATCH] BUG/MEDIUM: ssl: 'tune.ssl.default-dh-param' value ignored

Gbp-Pq: lp-1841936-BUG-MEDIUM-ssl-tune.ssl.default-dh-param-value-ignor.patch.

4f9cac4... by Leonidas S. Barbosa on 2019-11-04

[PATCH] CLEANUP: ssl: make ssl_sock_load_dh_params handle

Gbp-Pq: lp-1841936-CLEANUP-ssl-make-ssl_sock_load_dh_params-handle-errc.patch.

4c4b010... by Leonidas S. Barbosa on 2019-11-04

[PATCH] BUG/MEDIUM: Make sure stksess is properly aligned.

Gbp-Pq: stksess-align.patch.

cccce5d... by Leonidas S. Barbosa on 2019-11-04

[PATCH] BUG/CRITICAL: mux-h2: re-check the frame length when PRIORITY

Gbp-Pq: CVE-2018-20615.patch.

60ec9ea... by Leonidas S. Barbosa on 2019-11-04

[PATCH] BUG: dns: Prevent stack-exhaustion via recursion loop in

Gbp-Pq: CVE-2018-20103.patch.

f50eb05... by Leonidas S. Barbosa on 2019-11-04

[PATCH] BUG: dns: Prevent out-of-bounds read in

Gbp-Pq: CVE-2018-20102.patch.

c49d9bf... by Leonidas S. Barbosa on 2019-11-04

[PATCH] BUG/CRITICAL: hpack: fix improper sign check on the header

Gbp-Pq: CVE-2018-14645.patch.

4879f7a... by Leonidas S. Barbosa on 2019-11-04

[PATCH] BUG/MEDIUM: cache: don't cache when an Authorization header

Gbp-Pq: CVE-2018-11469.patch.