projects / trafficserver.git / log
? search:
summary | shortlog | log | commit | commitdiff | tree
first ⋅ prev ⋅ next
trafficserver.git
3 years agotrafficserver (8.1.5+ds-1~deb11u1) bullseye-security; urgency=high
commit | commitdiff | tree
Jean Baptiste Favre [Fri, 12 Aug 2022 07:16:08 +0000 (08:16 +0100)]
trafficserver (8.1.5+ds-1~deb11u1) bullseye-security; urgency=high

  * Update d/watch to stick to 8.1.X serie
  * Update upstream gpg keys
  * UPdate d/salsa-ci.yaml
  * New upstream version 8.1.5+ds
  * Patches refresh for 8.1.5
  * Update experimental plugins list
  * Multiple CVE fixes for 8.1.x
    + CVE-2021-37150: Protocol vs scheme mismatch
    + CVE-2022-25763: Improper input validation on HTTP/2 headers
    + CVE-2022-28129: Insufficient Validation of HTTP/1.x Headers
    + CVE-2022-31778: Transfer-Encoding not treated as hop-by-hop
    + CVE-2022-31779: Improper HTTP/2 scheme and method validation
    + CVE-2022-31780: HTTP/2 framing vulnerabilities

[dgit import unpatched trafficserver 8.1.5+ds-1~deb11u1]

3 years agoImport trafficserver_8.1.5+ds.orig.tar.xz
commit | commitdiff | tree
Jean Baptiste Favre [Fri, 12 Aug 2022 07:16:08 +0000 (08:16 +0100)]
Import trafficserver_8.1.5+ds.orig.tar.xz

[dgit import orig trafficserver_8.1.5+ds.orig.tar.xz]

3 years agoImport trafficserver_8.1.5+ds-1~deb11u1.debian.tar.xz
commit | commitdiff | tree
Jean Baptiste Favre [Fri, 12 Aug 2022 07:16:08 +0000 (08:16 +0100)]
Import trafficserver_8.1.5+ds-1~deb11u1.debian.tar.xz

[dgit import tarball trafficserver 8.1.5+ds-1~deb11u1 trafficserver_8.1.5+ds-1~deb11u1.debian.tar.xz]

Unnamed repository; edit this file 'description' to name the repository.