UbuntuUpdates.org

Package "trafficserver"

Name: trafficserver

Description:

fast, scalable and extensible HTTP/1.1 and HTTP/2.0 caching proxy server

Latest version: 9.2.5+ds-1ubuntu2.1
Release: questing (25.10)
Level: security
Repository: universe
Homepage: https://trafficserver.apache.org/

Links


Download "trafficserver"


Other versions of "trafficserver" in Questing

Repository Area Version
base universe 9.2.5+ds-1ubuntu2
updates universe 9.2.5+ds-1ubuntu2.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 9.2.5+ds-1ubuntu2.1 2026-02-18 16:10:56 UTC

  trafficserver (9.2.5+ds-1ubuntu2.1) questing-security; urgency=medium

  * SECURITY UPDATE: out-of-bounds read in get_host_port_values
    (LP: #2141624)
    - debian/patches/0023-CVE-2024-50305.patch: Fix out-of-bounds read
      in MIMEHdr::get_host_port_values.
    - CVE-2024-50305

 -- Eduardo Barretto <email address hidden> Thu, 12 Feb 2026 17:40:51 +0100

2141624 CVE-2024-50305: out-of-bounds read in trafficserver get_host_port_values
CVE-2024-50305 Valid Host header field can cause Apache Traffic Server to crash on some platforms. This issue affects Apache Traffic Server: from 9.2.0 through 9.2



About   -   Send Feedback to @ubuntu_updates