UbuntuUpdates.org

Package "haproxy"

Name: haproxy

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • fast and reliable load balancing reverse proxy (HTML documentation)
  • syntax highlighting for HAProxy configuration files

Latest version: 1.8.8-1ubuntu0.9
Release: bionic (18.04)
Level: updates
Repository: universe

Links

Save this URL for the latest version of "haproxy": https://www.ubuntuupdates.org/haproxy



Other versions of "haproxy" in Bionic

Repository Area Version
base main 1.8.8-1
base universe 1.8.8-1
security main 1.8.8-1ubuntu0.9
security universe 1.8.8-1ubuntu0.9
updates main 1.8.8-1ubuntu0.9

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 1.8.8-1ubuntu0.9 2019-12-05 01:07:27 UTC

  haproxy (1.8.8-1ubuntu0.9) bionic-security; urgency=medium

  * SECURITY UPDATE: Intermediary Encapsulation attacks
    - debian/patches/CVE-2019-19330-*.patch: reject header values containing
      invalid chars and make header field name filtering stronger in
      src/h2.c, include/common/ist.h, include/common/h2.h.
    - CVE-2019-19330

 -- <email address hidden> (Leonidas S. Barbosa) Mon, 02 Dec 2019 12:38:31 -0300

Source diff to previous version
CVE-2019-19330 The HTTP/2 implementation in HAProxy before 2.0.10 mishandles headers, as demonstrated by carriage return (CR, ASCII 0xd), line feed (LF, ASCII 0xa),

Version: 1.8.8-1ubuntu0.8 2019-12-02 12:07:24 UTC

  haproxy (1.8.8-1ubuntu0.8) bionic; urgency=medium

  * d/p/lp-1848902-MINOR-systemd-consider-exit-status-143-as-successful.patch:
    fix potential hang in haproxy (LP: #1848902)

 -- Christian Ehrhardt <email address hidden> Tue, 12 Nov 2019 13:16:22 +0100

Source diff to previous version
1848902 haproxy in bionic can get stuck

Version: 1.8.8-1ubuntu0.7 2019-11-05 15:07:05 UTC

  haproxy (1.8.8-1ubuntu0.7) bionic-security; urgency=medium

  * SECURITY UPDATE: Messages with transfer-encoding header missing "chunked"
    value were not being correctly rejected
    - debian/patches/CVE-2019-18277.patch: also reject messages where
      "chunked" is missing from transfer-enoding in.
      src/proto_http.c.
    - CVE-2019-18277

 -- <email address hidden> (Leonidas S. Barbosa) Mon, 04 Nov 2019 11:03:13 -0300

Source diff to previous version
CVE-2019-18277 A flaw was found in HAProxy before 2.0.6. In legacy mode, messages featuring a transfer-encoding header missing the "chunked" value were not being co

Version: 1.8.8-1ubuntu0.6 2019-11-04 15:06:22 UTC

  haproxy (1.8.8-1ubuntu0.6) bionic; urgency=medium

  * Fix issues around dh_params when building against openssl 1.1.1
    to avoid regressing the minimal key size (LP: 1841936)
    - d/p/lp-1841936-BUG-MEDIUM-ssl-tune.ssl.default-dh-param-value-ignor.patch
    - d/p/lp-1841936-CLEANUP-ssl-make-ssl_sock_load_dh_params-handle-errc.patch

Source diff to previous version

Version: 1.8.8-1ubuntu0.4 2019-02-07 13:07:36 UTC

  haproxy (1.8.8-1ubuntu0.4) bionic; urgency=medium

  * d/p/stksess-align.patch: Make sure stksess is properly aligned.
    (LP: #1804069)
  * d/t/control, d/t/proxy-localhost: simple DEP8 test to actually
    generate traffic through haproxy.

 -- Andreas Hasenack <email address hidden> Thu, 24 Jan 2019 10:20:49 -0200

1804069 haproxy fails on arm64 due to alignment error



About   -   Send Feedback to @ubuntu_updates