-
haproxy (1.6.8-1) unstable; urgency=medium
* New upstream release (see CHANGELOG):
+ BUG/MAJOR: compression: initialize avail_in/next_in even during
flush
+ BUG/MAJOR: server: the "sni" directive could randomly cause trouble
+ BUG/MAJOR: stick-counters: possible crash when using sc_trackers
with wrong table
-- Vincent Bernat <email address hidden> Sun, 14 Aug 2016 14:17:08 +0200
-
haproxy (1.6.7-1) unstable; urgency=medium
* New upstream release (see CHANGELOG):
+ BUG/MAJOR: fix use-after-free crash on start
+ BUG/MEDIUM: dns: fix alignment issues in the DNS response parser
-- Vincent Bernat <email address hidden> Thu, 14 Jul 2016 08:29:43 +0200
-
haproxy (1.6.6-1) unstable; urgency=medium
* New upstream release (see CHANGELOG):
+ BUG/MAJOR: fix listening IP address storage for frontends
+ BUG/MAJOR: http: fix breakage of "reqdeny" causing random crashes
+ BUG/MEDIUM: stick-tables: fix breakage in table converters
+ BUG/MEDIUM: dns: unbreak DNS resolver after header fix
+ BUG/MEDIUM: stats: show servers state may show an servers from another
backend
+ BUG/MEDIUM: fix risk of segfault with "show tls-keys"
+ BUG/MEDIUM: sticktables: segfault in some configuration error cases
+ BUG/MEDIUM: lua: converters doesn't work
+ BUG/MEDIUM: http: add-header: buffer overwritten
+ BUG/MEDIUM: external-checks: close all FDs right after the fork()
+ BUG/MAJOR: external-checks: use asynchronous signal delivery
* Drop haproxy.service-check-config-before-reload.patch. Applied
upstream.
-- Vincent Bernat <email address hidden> Tue, 28 Jun 2016 10:13:33 +0200
-
haproxy (1.6.5-2) unstable; urgency=high
* Add a patch to fix CVE-2016-5360. Closes: #826869.
+ BUG/MAJOR: http: fix breakage of "reqdeny" causing random crashes
-- Vincent Bernat <email address hidden> Sat, 11 Jun 2016 22:23:50 +0200
-
haproxy (1.6.5-1) unstable; urgency=medium
* New upstream release (see CHANGELOG):
+ BUG/MAJOR: channel: fix miscalculation of available buffer space
+ BUG/MAJOR: Fix crash in http_get_fhdr with exactly MAX_HDR_HISTORY
headers
+ BUG/MEDIUM: channel: don't allow to overwrite the reserve until
connected
+ BUG/MEDIUM: channel: fix inconsistent handling of 4GB-1 transfers
+ BUG/MEDIUM: channel: incorrect polling condition may delay event
delivery
+ BUG/MEDIUM: dns: fix alignment issue when building DNS queries
+ BUG/MEDIUM: fix maxaccept computation on per-process listeners
+ BUG/MEDIUM: Fix RFC5077 resumption when more than TLS_TICKETS_NO are
present
+ BUG/MEDIUM: http: fix risk of CPU spikes with pipelined requests from
dead client
+ BUG/MEDIUM: log: fix risk of segfault when logging HTTP fields in TCP
mode
+ BUG/MEDIUM: lua: protects the upper boundary of the argument list for
converters/fetches.
+ BUG/MEDIUM: peers: fix incorrect age in frequency counters
+ BUG/MEDIUM: sample: initialize the pointer before parse_binary call.
+ BUG/MEDIUM: stats: show backend may show an empty or incomplete result
+ BUG/MEDIUM: stats: show servers state may show an empty or incomplete
result
+ BUG/MEDIUM: stick-tables: some sample-fetch doesn't work in the
connection state.
+ BUG/MEDIUM: stream: ensure the SI_FL_DONT_WAKE flag is properly cleared
+ BUG/MEDIUM: trace.c: rdtsc() is defined in two files
+ MEDIUM: unblock signals on startup.
* Bump standards to 3.9.8; no changes needed.
-- Apollon Oikonomopoulos <email address hidden> Wed, 11 May 2016 11:07:24 +0300
-
haproxy (1.6.4-3) unstable; urgency=medium
* d/init: remove support for dynamic script name. This enable haproxy to
be started on boot.
-- Vincent Bernat <email address hidden> Thu, 24 Mar 2016 20:36:08 +0100
-
haproxy (1.6.3-1) unstable; urgency=medium
[ Apollon Oikonomopoulos ]
* haproxy.init: use s-s-d's --pidfile option.
Thanks to Louis Bouchard (Closes: 804530)
[ Vincent Bernat ]
* watch: fix d/watch to look for 1.6 version
* Imported Upstream version 1.6.3
-- Vincent Bernat <email address hidden> Thu, 31 Dec 2015 08:10:10 +0100