-
haproxy (1.4.15-1ubuntu0.1) oneiric-security; urgency=low
* SECURITY UPDATE: denial of service and possible arbitrary code
execution via non-default global.tune.bufsize.
- debian/patches/CVE-2012-2942.patch: check buffer sizes in
include/types/global.h, src/acl.c, src/cfgparse.c, src/checks.c,
src/dumpstats.c, src/haproxy.c, src/proto_http.c,
tests/0000-debug-stats.diff.
- CVE-2012-2942
* SECURITY UPDATE: denial of service via HTTP information in tcp-request
- debian/patches/CVE-2013-1912.patch: properly handle buffers in
src/proto_http.c.
- CVE-2013-1912
-- Marc Deslauriers <email address hidden> Fri, 05 Apr 2013 10:22:37 -0400
-
haproxy (1.4.15-1) unstable; urgency=low
* New upstream release with critical bug fix (Closes: #631351)
-- Scott Kitterman <email address hidden> Sun, 25 Sep 2011 09:52:58 +0000
-
haproxy (1.4.13-1) unstable; urgency=low
* New maintainer upload (Closes: #615246)
* New upstream release
* Standards-version goes 3.9.1 (no change)
* Added patch bashism (Closes: #581109)
* Added a README.source file.
-- Ubuntu Archive Auto-Sync <email address hidden> Sat, 30 Apr 2011 12:51:24 +0000
-
haproxy (1.4.8-1) unstable; urgency=low
* New upstream release.
-- Ubuntu Archive Auto-Sync <email address hidden> Sun, 20 Jun 2010 03:01:19 +0100
