-
haproxy (1.5.14-1ubuntu0.15.10.1) wily; urgency=medium
* Ensure that haproxy processes are terminated correctly when executing
stop/restart operations, easing backports to pre-systemd versions of
Ubuntu (LP: #1477198, #1481737).
-- James Page <email address hidden> Mon, 09 Nov 2015 16:51:46 +0000
-
haproxy (1.5.14-1) unstable; urgency=high
* New upstream version. Fix an information leak (CVE-2015-3281):
- BUG/MAJOR: buffers: make the buffer_slow_realign() function
respect output data.
* Add $named as a dependency for init script. Closes: #790638.
-- Vincent Bernat <email address hidden> Fri, 03 Jul 2015 19:49:02 +0200
-
haproxy (1.5.13-1) unstable; urgency=medium
* New upstream stable release including the following fixes:
- MAJOR: peers: allow peers section to be used with nbproc > 1
- BUG/MAJOR: checks: always check for end of list before proceeding
- MEDIUM: ssl: replace standards DH groups with custom ones
- BUG/MEDIUM: ssl: fix tune.ssl.default-dh-param value being overwritten
- BUG/MEDIUM: cfgparse: segfault when userlist is misused
- BUG/MEDIUM: stats: properly initialize the scope before dumping stats
- BUG/MEDIUM: http: don't forward client shutdown without NOLINGER
except for tunnels
- BUG/MEDIUM: checks: do not dereference head of a tcp-check at the end
- BUG/MEDIUM: checks: do not dereference a list as a tcpcheck struct
- BUG/MEDIUM: peers: apply a random reconnection timeout
- BUG/MEDIUM: config: properly compute the default number of processes
for a proxy
-- Vincent Bernat <email address hidden> Sat, 27 Jun 2015 20:52:07 +0200
-
haproxy (1.5.12-1) unstable; urgency=medium
* New upstream stable release including the following fixes:
- BUG/MAJOR: http: don't read past buffer's end in http_replace_value
- BUG/MAJOR: http: prevent risk of reading past end with balance
url_param
- BUG/MEDIUM: Do not consider an agent check as failed on L7 error
- BUG/MEDIUM: patern: some entries are not deleted with case
insensitive match
- BUG/MEDIUM: buffer: one byte miss in buffer free space check
- BUG/MEDIUM: http: thefunction "(req|res)-replace-value" doesn't
respect the HTTP syntax
- BUG/MEDIUM: peers: correctly configure the client timeout
- BUG/MEDIUM: http: hdr_cnt would not count any header when called
without name
- BUG/MEDIUM: listener: don't report an error when resuming unbound
listeners
- BUG/MEDIUM: init: don't limit cpu-map to the first 32 processes only
- BUG/MEDIUM: stream-int: always reset si->ops when si->end is
nullified
- BUG/MEDIUM: http: remove content-length from chunked messages
- BUG/MEDIUM: http: do not restrict parsing of transfer-encoding to
HTTP/1.1
- BUG/MEDIUM: http: incorrect transfer-coding in the request is a bad
request
- BUG/MEDIUM: http: remove content-length form responses with bad
transfer-encoding
- BUG/MEDIUM: http: wait for the exact amount of body bytes in
wait_for_request_body
-- Vincent Bernat <email address hidden> Sat, 02 May 2015 16:38:28 +0200
-
haproxy (1.5.10-1) experimental; urgency=medium
* New upstream stable release including the following fixes:
- BUG/MAJOR: stream-int: properly check the memory allocation return
- BUG/MEDIUM: sample: fix random number upper-bound
- BUG/MEDIUM: patterns: previous fix was incomplete
- BUG/MEDIUM: payload: ensure that a request channel is available
- BUG/MEDIUM: tcp-check: don't rely on random memory contents
- BUG/MEDIUM: tcp-checks: disable quick-ack unless next rule is an expect
- BUG/MEDIUM: config: do not propagate processes between stopped
processes
- BUG/MEDIUM: memory: fix freeing logic in pool_gc2()
- BUG/MEDIUM: compression: correctly report zlib_mem
* Upload to experimental.
-- Vincent Bernat <email address hidden> Sun, 04 Jan 2015 13:17:56 +0100
