projects / trafficserver.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(merge: e4e48ee e8cab91)
trafficserver (8.1.11+ds-0+deb11u1) bullseye-security; urgency=medium
authorAdrian Bunk <bunk@debian.org>
Thu, 26 Sep 2024 13:41:35 +0000 (16:41 +0300)
committerAdrian Bunk <bunk@debian.org>
Thu, 26 Sep 2024 13:41:35 +0000 (16:41 +0300)
commit9d00d5fb6f938a40ec3cabd7ee67a6f9159a55af
tree8fa30a527aefc3880dd4643b33e1f89e54cfbff3tree | snapshot
parente4e48ee741ed69cc3df0d137623ac0ccdc495494commit | diff
parente8cab91a8977e2dee74e91d0eace22eaffa1c41fcommit | diff
trafficserver (8.1.11+ds-0+deb11u1) bullseye-security; urgency=medium

  * New upstream release.
    - CVE-2023-38522: Incomplete field name check allows request smuggling
    - CVE-2024-35161: Incomplete check for chunked trailer section allows
      request smuggling
    - CVE-2024-35296: Invalid Accept-Encoding can force forwarding requests

[dgit import unpatched trafficserver 8.1.11+ds-0+deb11u1]
41 files changed:
debian/CONFIGURATION.Debian | | blob
debian/NEWS | | blob
debian/README.Debian | | blob
debian/README.conf-remap.Debian | | blob
debian/change_config.pl | | blob
debian/changelog | | blob
debian/control | | blob
debian/copyright | | blob
debian/docs | | blob
debian/gbp.conf | | blob
debian/not-installed | | blob
debian/patches/0003-reproductible-build.patch | | blob
debian/patches/0006-fix-doc-build.patch | | blob
debian/patches/0008-fix-python-check-unused-dependencies.patch | | blob
debian/patches/0009-fix-mysql-8-build.patch | | blob
debian/patches/0011-fix-segfault.patch | | blob
debian/patches/0012-fix-spelling-checks.patch | | blob
debian/patches/0013-fix-perl-interpreter-path.patch | | blob
debian/patches/0014-use_system_yaml-cpp.patch | | blob
debian/patches/0016-fix_python_3.8.patch | | blob
debian/patches/series | | blob
debian/rules | | blob
debian/salsa-ci.yml | | blob
debian/source/format | | blob
debian/source/options | | blob
debian/trafficserver-dev.examples | | blob
debian/trafficserver-dev.install | | blob
debian/trafficserver-dev.manpages | | blob
debian/trafficserver-experimental-plugins.install | | blob
debian/trafficserver.default | | blob
debian/trafficserver.dirs | | blob
debian/trafficserver.example | | blob
debian/trafficserver.init | | blob
debian/trafficserver.install | | blob
debian/trafficserver.maintscript | | blob
debian/trafficserver.manpages | | blob
debian/trafficserver.postinst | | blob
debian/trafficserver.service | | blob
debian/trafficserver.tmpfile | | blob
debian/upstream/signing-key.asc | | blob
debian/watch | | blob
Unnamed repository; edit this file 'description' to name the repository.