Jean Baptiste Favre [Thu, 2 Nov 2023 16:00:26 +0000 (17:00 +0100)]
Merge trafficserver (8.1.9+ds-1~deb11u1) import into refs/heads/workingbranch
Matthias Klose [Thu, 2 Nov 2023 16:00:26 +0000 (17:00 +0100)]
Fix test for python 3.8
Reviewed-by: Jean Baptiste Favre <jbfavre@debian.org>
Last-Update: 2020-02-03
Last-Update: 2020-02-03
Gbp-Pq: Name 0016-fix_python_3.8.patch
Jean Baptiste Favre [Thu, 2 Nov 2023 16:00:26 +0000 (17:00 +0100)]
Update compilation chain after embedded libyamlcpp removal
Origin: other
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2019-01-30
Last-Update: 2019-01-30
Gbp-Pq: Name 0014-use_system_yaml-cpp.patch
Jean Baptiste Favre [Thu, 2 Nov 2023 16:00:26 +0000 (17:00 +0100)]
Fix Perl interpreter path
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2019-01-03
Last-Update: 2019-01-03
Gbp-Pq: Name 0013-fix-perl-interpreter-path.patch
Jean Baptiste Favre [Thu, 2 Nov 2023 16:00:26 +0000 (17:00 +0100)]
Fix various speeling issues
Forwarded: https://github.com/apache/trafficserver/pull/4750
Applied-Upstream: https://github.com/apache/trafficserver/commit/
af0ad4a1880a21743e98331855bb78e15d5406ef
Last-Update: 2019-01-03
Last-Update: 2019-01-03
Gbp-Pq: Name 0012-fix-spelling-checks.patch
zhang [Thu, 2 Nov 2023 16:00:26 +0000 (17:00 +0100)]
Fix Segmentation fault in ShowCache::handleCacheEvent
Origin: upstream
Bug: https://github.com/apache/trafficserver/issues/4328
Applied-Upstream: https://github.com/apache/trafficserver/commit/
616eb10bfc35599a2c93ff30879d584a05ddf83e
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2018-10-17
Last-Update: 2018-10-17
Gbp-Pq: Name 0011-fix-segfault.patch
Jean Baptiste Favre [Thu, 2 Nov 2023 16:00:26 +0000 (17:00 +0100)]
Fix build issue with MySQL 8
Origin: other, https://bugs.launchpad.net/ubuntu/+source/trafficserver/+bug/
1795362
Forwarded: https://github.com/apache/trafficserver/pull/4360
Applied-Upstream: https://github.com/apache/trafficserver/commit/
05b30527974416768515506f69da338652c23260
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2018-10-06
The my_bool type is no longer used in MySQL source code.
Any third-party code that used this type to represent C
boolean variables should use the bool or int C type instead.
Last-Update: 2018-10-06
Gbp-Pq: Name 0009-fix-mysql-8-build.patch
Jean Baptiste Favre [Thu, 2 Nov 2023 16:00:26 +0000 (17:00 +0100)]
Force python3 usage, add libfakeroot-sysv to blacklist
Origin: other
Last-Update: 2018-09-24
Last-Update: 2018-09-24
Gbp-Pq: Name 0008-fix-python-check-unused-dependencies.patch
Jean Baptiste Favre [Thu, 2 Nov 2023 16:00:26 +0000 (17:00 +0100)]
Make documentation build works outside of git repository
Origin: other
Last-Update: 2019-01-03
Current documentation build requires git and curl to get some stuff from the internet
This patch aims to delete those dependencies, forcing git branch to master,
and using Debian provided plantuml instead of downloading it from apache mirror
Last-Update: 2019-01-03
Gbp-Pq: Name 0006-fix-doc-build.patch
Reiner Herrmann [Thu, 2 Nov 2023 16:00:26 +0000 (17:00 +0100)]
make the build reproducible
Origin: other, https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=833176
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2016-11-18
Last-Update: 2016-11-18
Gbp-Pq: Name 0003-reproductible-build.patch
Jean Baptiste Favre [Thu, 2 Nov 2023 16:00:26 +0000 (17:00 +0100)]
trafficserver (8.1.9+ds-1~deb11u1) bullseye-security; urgency=medium
* New upstream version 8.1.9+ds
* Update d/patches for 8.1.9+ds-1~deb11u1 release
* Update d/trafficserver-experimental-plugins.install
* Multiple CVE fixes for 8.1.x (Closes: #
1054427, Closes: #
1053801)
- CVE-2022-47185: Improper input validation vulnerability
- CVE-2023-33934: Improper Input Validation vulnerability
- CVE-2023-41752: Exposure of Sensitive Information to an Unauthorized Actor
- CVE-2023-44487: The HTTP/2 protocol allows a denial of service
[dgit import unpatched trafficserver 8.1.9+ds-1~deb11u1]
Jean Baptiste Favre [Thu, 2 Nov 2023 16:00:26 +0000 (17:00 +0100)]
Import trafficserver_8.1.9+ds.orig.tar.xz
[dgit import orig trafficserver_8.1.9+ds.orig.tar.xz]
Jean Baptiste Favre [Thu, 2 Nov 2023 16:00:26 +0000 (17:00 +0100)]
Import trafficserver_8.1.9+ds-1~deb11u1.debian.tar.xz
[dgit import tarball trafficserver 8.1.9+ds-1~deb11u1 trafficserver_8.1.9+ds-1~deb11u1.debian.tar.xz]
Jean Baptiste Favre [Wed, 21 Jun 2023 09:16:56 +0000 (10:16 +0100)]
Merge trafficserver (8.1.7+ds-1~deb11u1) import into refs/heads/workingbranch
Matthias Klose [Wed, 21 Jun 2023 09:16:56 +0000 (10:16 +0100)]
Fix test for python 3.8
Reviewed-by: Jean Baptiste Favre <jbfavre@debian.org>
Last-Update: 2020-02-03
Last-Update: 2020-02-03
Gbp-Pq: Name 0016-fix_python_3.8.patch
Jean Baptiste Favre [Wed, 21 Jun 2023 09:16:56 +0000 (10:16 +0100)]
Update compilation chain after embedded libyamlcpp removal
Origin: other
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2019-01-30
Last-Update: 2019-01-30
Gbp-Pq: Name 0014-use_system_yaml-cpp.patch
Jean Baptiste Favre [Wed, 21 Jun 2023 09:16:56 +0000 (10:16 +0100)]
Fix Perl interpreter path
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2019-01-03
Last-Update: 2019-01-03
Gbp-Pq: Name 0013-fix-perl-interpreter-path.patch
Jean Baptiste Favre [Wed, 21 Jun 2023 09:16:56 +0000 (10:16 +0100)]
Fix various speeling issues
Forwarded: https://github.com/apache/trafficserver/pull/4750
Applied-Upstream: https://github.com/apache/trafficserver/commit/
af0ad4a1880a21743e98331855bb78e15d5406ef
Last-Update: 2019-01-03
Last-Update: 2019-01-03
Gbp-Pq: Name 0012-fix-spelling-checks.patch
zhang [Wed, 21 Jun 2023 09:16:56 +0000 (10:16 +0100)]
Fix Segmentation fault in ShowCache::handleCacheEvent
Origin: upstream
Bug: https://github.com/apache/trafficserver/issues/4328
Applied-Upstream: https://github.com/apache/trafficserver/commit/
616eb10bfc35599a2c93ff30879d584a05ddf83e
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2018-10-17
Last-Update: 2018-10-17
Gbp-Pq: Name 0011-fix-segfault.patch
Jean Baptiste Favre [Wed, 21 Jun 2023 09:16:56 +0000 (10:16 +0100)]
Fix build issue with MySQL 8
Origin: other, https://bugs.launchpad.net/ubuntu/+source/trafficserver/+bug/
1795362
Forwarded: https://github.com/apache/trafficserver/pull/4360
Applied-Upstream: https://github.com/apache/trafficserver/commit/
05b30527974416768515506f69da338652c23260
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2018-10-06
The my_bool type is no longer used in MySQL source code.
Any third-party code that used this type to represent C
boolean variables should use the bool or int C type instead.
Last-Update: 2018-10-06
Gbp-Pq: Name 0009-fix-mysql-8-build.patch
Jean Baptiste Favre [Wed, 21 Jun 2023 09:16:56 +0000 (10:16 +0100)]
Force python3 usage, add libfakeroot-sysv to blacklist
Origin: other
Last-Update: 2018-09-24
Last-Update: 2018-09-24
Gbp-Pq: Name 0008-fix-python-check-unused-dependencies.patch
Jean Baptiste Favre [Wed, 21 Jun 2023 09:16:56 +0000 (10:16 +0100)]
Make documentation build works outside of git repository
Origin: other
Last-Update: 2019-01-03
Current documentation build requires git and curl to get some stuff from the internet
This patch aims to delete those dependencies, forcing git branch to master,
and using Debian provided plantuml instead of downloading it from apache mirror
Last-Update: 2019-01-03
Gbp-Pq: Name 0006-fix-doc-build.patch
Reiner Herrmann [Wed, 21 Jun 2023 09:16:56 +0000 (10:16 +0100)]
make the build reproducible
Origin: other, https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=833176
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2016-11-18
Last-Update: 2016-11-18
Gbp-Pq: Name 0003-reproductible-build.patch
Aron Xu [Tue, 2 Feb 2016 04:17:24 +0000 (12:17 +0800)]
Use -mcx16 on x86 platforms only
Gbp-Pq: Name 0001-Use-mcx16-on-x86-platforms-only.patch
Jean Baptiste Favre [Wed, 21 Jun 2023 09:16:56 +0000 (10:16 +0100)]
trafficserver (8.1.7+ds-1~deb11u1) bullseye-security; urgency=high
* New upstream version 8.1.7+ds
* Multiple CVE fixes for 8.1.x (Closes: #
1038248)
+ CVE-2022-47184: Exposure of Sensitive Information to an Unauthorized Actor vulnerability
+ CVE-2023-30631: Improper Input Validation vulnerability
+ CVE-2023-33933: Exposure of Sensitive Information to an Unauthorized Actor vulnerability
[dgit import unpatched trafficserver 8.1.7+ds-1~deb11u1]
Jean Baptiste Favre [Wed, 21 Jun 2023 09:16:56 +0000 (10:16 +0100)]
Import trafficserver_8.1.7+ds.orig.tar.xz
[dgit import orig trafficserver_8.1.7+ds.orig.tar.xz]
Jean Baptiste Favre [Wed, 21 Jun 2023 09:16:56 +0000 (10:16 +0100)]
Import trafficserver_8.1.7+ds-1~deb11u1.debian.tar.xz
[dgit import tarball trafficserver 8.1.7+ds-1~deb11u1 trafficserver_8.1.7+ds-1~deb11u1.debian.tar.xz]
Jean Baptiste Favre [Wed, 4 Jan 2023 08:22:58 +0000 (08:22 +0000)]
Merge trafficserver (8.1.6+ds-1~deb11u1) import into refs/heads/workingbranch
Matthias Klose [Wed, 4 Jan 2023 08:22:58 +0000 (08:22 +0000)]
Fix test for python 3.8
Reviewed-by: Jean Baptiste Favre <jbfavre@debian.org>
Last-Update: 2020-02-03
Last-Update: 2020-02-03
Gbp-Pq: Name 0016-fix_python_3.8.patch
Jean Baptiste Favre [Wed, 4 Jan 2023 08:22:58 +0000 (08:22 +0000)]
Update compilation chain after embedded libyamlcpp removal
Origin: other
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2019-01-30
Last-Update: 2019-01-30
Gbp-Pq: Name 0014-use_system_yaml-cpp.patch
Jean Baptiste Favre [Wed, 4 Jan 2023 08:22:58 +0000 (08:22 +0000)]
Fix Perl interpreter path
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2019-01-03
Last-Update: 2019-01-03
Gbp-Pq: Name 0013-fix-perl-interpreter-path.patch
Jean Baptiste Favre [Wed, 4 Jan 2023 08:22:58 +0000 (08:22 +0000)]
Fix various speeling issues
Forwarded: https://github.com/apache/trafficserver/pull/4750
Applied-Upstream: https://github.com/apache/trafficserver/commit/
af0ad4a1880a21743e98331855bb78e15d5406ef
Last-Update: 2019-01-03
Last-Update: 2019-01-03
Gbp-Pq: Name 0012-fix-spelling-checks.patch
zhang [Wed, 4 Jan 2023 08:22:58 +0000 (08:22 +0000)]
Fix Segmentation fault in ShowCache::handleCacheEvent
Origin: upstream
Bug: https://github.com/apache/trafficserver/issues/4328
Applied-Upstream: https://github.com/apache/trafficserver/commit/
616eb10bfc35599a2c93ff30879d584a05ddf83e
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2018-10-17
Last-Update: 2018-10-17
Gbp-Pq: Name 0011-fix-segfault.patch
Jean Baptiste Favre [Wed, 4 Jan 2023 08:22:58 +0000 (08:22 +0000)]
Fix build issue with MySQL 8
Origin: other, https://bugs.launchpad.net/ubuntu/+source/trafficserver/+bug/
1795362
Forwarded: https://github.com/apache/trafficserver/pull/4360
Applied-Upstream: https://github.com/apache/trafficserver/commit/
05b30527974416768515506f69da338652c23260
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2018-10-06
The my_bool type is no longer used in MySQL source code.
Any third-party code that used this type to represent C
boolean variables should use the bool or int C type instead.
Last-Update: 2018-10-06
Gbp-Pq: Name 0009-fix-mysql-8-build.patch
Jean Baptiste Favre [Wed, 4 Jan 2023 08:22:58 +0000 (08:22 +0000)]
Force python3 usage, add libfakeroot-sysv to blacklist
Origin: other
Last-Update: 2018-09-24
Last-Update: 2018-09-24
Gbp-Pq: Name 0008-fix-python-check-unused-dependencies.patch
Jean Baptiste Favre [Wed, 4 Jan 2023 08:22:58 +0000 (08:22 +0000)]
Make documentation build works outside of git repository
Origin: other
Last-Update: 2019-01-03
Current documentation build requires git and curl to get some stuff from the internet
This patch aims to delete those dependencies, forcing git branch to master,
and using Debian provided plantuml instead of downloading it from apache mirror
Last-Update: 2019-01-03
Gbp-Pq: Name 0006-fix-doc-build.patch
Reiner Herrmann [Wed, 4 Jan 2023 08:22:58 +0000 (08:22 +0000)]
make the build reproducible
Origin: other, https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=833176
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2016-11-18
Last-Update: 2016-11-18
Gbp-Pq: Name 0003-reproductible-build.patch
Aron Xu [Tue, 2 Feb 2016 04:17:24 +0000 (12:17 +0800)]
Use -mcx16 on x86 platforms only
Gbp-Pq: Name 0001-Use-mcx16-on-x86-platforms-only.patch
Jean Baptiste Favre [Wed, 4 Jan 2023 08:22:58 +0000 (08:22 +0000)]
trafficserver (8.1.6+ds-1~deb11u1) bullseye-security; urgency=high
* Update d/u/signing-key for 8.1.x serie
* New upstream version 8.1.6+ds
* Multiple CVE fixes for 8.1.x
+ CVE-2022-32749: Improper Check for Unusual or Exceptional Conditions vulnerability
+ CVE-2022-37392: Improper Check for Unusual or Exceptional Conditions vulnerability
[dgit import unpatched trafficserver 8.1.6+ds-1~deb11u1]
Jean Baptiste Favre [Wed, 4 Jan 2023 08:22:58 +0000 (08:22 +0000)]
Import trafficserver_8.1.6+ds.orig.tar.xz
[dgit import orig trafficserver_8.1.6+ds.orig.tar.xz]
Jean Baptiste Favre [Wed, 4 Jan 2023 08:22:58 +0000 (08:22 +0000)]
Import trafficserver_8.1.6+ds-1~deb11u1.debian.tar.xz
[dgit import tarball trafficserver 8.1.6+ds-1~deb11u1 trafficserver_8.1.6+ds-1~deb11u1.debian.tar.xz]
Jean Baptiste Favre [Fri, 12 Aug 2022 07:16:08 +0000 (08:16 +0100)]
Merge trafficserver (8.1.5+ds-1~deb11u1) import into refs/heads/workingbranch
Matthias Klose [Fri, 12 Aug 2022 07:16:08 +0000 (08:16 +0100)]
Fix test for python 3.8
Reviewed-by: Jean Baptiste Favre <jbfavre@debian.org>
Last-Update: 2020-02-03
Last-Update: 2020-02-03
Gbp-Pq: Name 0016-fix_python_3.8.patch
Jean Baptiste Favre [Fri, 12 Aug 2022 07:16:08 +0000 (08:16 +0100)]
Update compilation chain after embedded libyamlcpp removal
Origin: other
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2019-01-30
Last-Update: 2019-01-30
Gbp-Pq: Name 0014-use_system_yaml-cpp.patch
Jean Baptiste Favre [Fri, 12 Aug 2022 07:16:08 +0000 (08:16 +0100)]
Fix Perl interpreter path
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2019-01-03
Last-Update: 2019-01-03
Gbp-Pq: Name 0013-fix-perl-interpreter-path.patch
Jean Baptiste Favre [Fri, 12 Aug 2022 07:16:08 +0000 (08:16 +0100)]
Fix various speeling issues
Forwarded: https://github.com/apache/trafficserver/pull/4750
Applied-Upstream: https://github.com/apache/trafficserver/commit/
af0ad4a1880a21743e98331855bb78e15d5406ef
Last-Update: 2019-01-03
Last-Update: 2019-01-03
Gbp-Pq: Name 0012-fix-spelling-checks.patch
zhang [Fri, 12 Aug 2022 07:16:08 +0000 (08:16 +0100)]
Fix Segmentation fault in ShowCache::handleCacheEvent
Origin: upstream
Bug: https://github.com/apache/trafficserver/issues/4328
Applied-Upstream: https://github.com/apache/trafficserver/commit/
616eb10bfc35599a2c93ff30879d584a05ddf83e
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2018-10-17
Last-Update: 2018-10-17
Gbp-Pq: Name 0011-fix-segfault.patch
Jean Baptiste Favre [Fri, 12 Aug 2022 07:16:08 +0000 (08:16 +0100)]
Fix build issue with MySQL 8
Origin: other, https://bugs.launchpad.net/ubuntu/+source/trafficserver/+bug/
1795362
Forwarded: https://github.com/apache/trafficserver/pull/4360
Applied-Upstream: https://github.com/apache/trafficserver/commit/
05b30527974416768515506f69da338652c23260
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2018-10-06
The my_bool type is no longer used in MySQL source code.
Any third-party code that used this type to represent C
boolean variables should use the bool or int C type instead.
Last-Update: 2018-10-06
Gbp-Pq: Name 0009-fix-mysql-8-build.patch
Jean Baptiste Favre [Fri, 12 Aug 2022 07:16:08 +0000 (08:16 +0100)]
Force python3 usage, add libfakeroot-sysv to blacklist
Origin: other
Last-Update: 2018-09-24
Last-Update: 2018-09-24
Gbp-Pq: Name 0008-fix-python-check-unused-dependencies.patch
Jean Baptiste Favre [Fri, 12 Aug 2022 07:16:08 +0000 (08:16 +0100)]
Make documentation build works outside of git repository
Origin: other
Last-Update: 2019-01-03
Current documentation build requires git and curl to get some stuff from the internet
This patch aims to delete those dependencies, forcing git branch to master,
and using Debian provided plantuml instead of downloading it from apache mirror
Last-Update: 2019-01-03
Gbp-Pq: Name 0006-fix-doc-build.patch
Reiner Herrmann [Fri, 12 Aug 2022 07:16:08 +0000 (08:16 +0100)]
make the build reproducible
Origin: other, https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=833176
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2016-11-18
Last-Update: 2016-11-18
Gbp-Pq: Name 0003-reproductible-build.patch
Aron Xu [Tue, 2 Feb 2016 04:17:24 +0000 (12:17 +0800)]
Use -mcx16 on x86 platforms only
Gbp-Pq: Name 0001-Use-mcx16-on-x86-platforms-only.patch
Jean Baptiste Favre [Fri, 12 Aug 2022 07:16:08 +0000 (08:16 +0100)]
trafficserver (8.1.5+ds-1~deb11u1) bullseye-security; urgency=high
* Update d/watch to stick to 8.1.X serie
* Update upstream gpg keys
* UPdate d/salsa-ci.yaml
* New upstream version 8.1.5+ds
* Patches refresh for 8.1.5
* Update experimental plugins list
* Multiple CVE fixes for 8.1.x
+ CVE-2021-37150: Protocol vs scheme mismatch
+ CVE-2022-25763: Improper input validation on HTTP/2 headers
+ CVE-2022-28129: Insufficient Validation of HTTP/1.x Headers
+ CVE-2022-31778: Transfer-Encoding not treated as hop-by-hop
+ CVE-2022-31779: Improper HTTP/2 scheme and method validation
+ CVE-2022-31780: HTTP/2 framing vulnerabilities
[dgit import unpatched trafficserver 8.1.5+ds-1~deb11u1]
Jean Baptiste Favre [Fri, 12 Aug 2022 07:16:08 +0000 (08:16 +0100)]
Import trafficserver_8.1.5+ds.orig.tar.xz
[dgit import orig trafficserver_8.1.5+ds.orig.tar.xz]
Jean Baptiste Favre [Fri, 12 Aug 2022 07:16:08 +0000 (08:16 +0100)]
Import trafficserver_8.1.5+ds-1~deb11u1.debian.tar.xz
[dgit import tarball trafficserver 8.1.5+ds-1~deb11u1 trafficserver_8.1.5+ds-1~deb11u1.debian.tar.xz]
Jean Baptiste Favre [Sat, 21 May 2022 17:28:31 +0000 (18:28 +0100)]
Merge trafficserver (8.1.1+ds-1.1+deb11u1) import into refs/heads/workingbranch
Jean Baptiste Favre [Sat, 21 May 2022 17:28:31 +0000 (18:28 +0100)]
Bug fix in origin connection handling
Origin: upstream
Applied-Upstream: https://github.com/apache/trafficserver/commit/
d3f36f79820ea10c26573c742b1bbc370c351716
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2022-05-21
Last-Update: 2022-05-21
Gbp-Pq: Name 0019-CVE_2021_44759.patch
Jean Baptiste Favre [Sat, 21 May 2022 17:28:31 +0000 (18:28 +0100)]
Improper Input Validation vulnerability in request line parsing
Origin: upstream
Applied-Upstream:
85c319a7f7c0537bee408ea25df6f1a5ed0a4071,
c4e6661a5a205b1f60279f0e66aa496023185967,
8c6f2ed84ba0d8e6255baceb99ee891ebe1ce473
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2022-05-21
Last-Update: 2022-05-21
Gbp-Pq: Name 0019-CVE_2021_44040.patch
Alan M. Carroll [Sat, 21 May 2022 17:28:31 +0000 (18:28 +0100)]
Add some checking to validate the scheme matches the wire protocol.
Origin: upstream
Applied-Upstream: https://github.com/apache/trafficserver/commit/
feefc5e4abc5011dfad5dcfef3f22998faf6e2d4
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2022-05-21
Last-Update: 2022-05-21
Gbp-Pq: Name 0019-CVE_2021_38161.patch
Brian Neradt [Sat, 21 May 2022 17:28:31 +0000 (18:28 +0100)]
Detect and handle chunk header size truncation
Origin: upstream
Applied-Upstream: https://github.com/apache/trafficserver/commit/
2addc8ca71449ceac0d5b80172460ee09c938f5e
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2022-05-21
This detects if a chunk header size is too large and, if so, closes the
connection.
Last-Update: 2022-05-21
Gbp-Pq: Name 0019-CVE_2021_37149.patch
Brian Neradt [Sat, 21 May 2022 17:28:31 +0000 (18:28 +0100)]
Reject Transfer-Encoding in pre-HTTP/1.1 requests
Origin: upstream
Applied-Upstream: https://github.com/apache/trafficserver/commit/
e2c9ac217f24dc3e91ff2c9f52b52093e8fb32d5
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2022-05-21
Per spec, Transfer-Encoding is only supported in HTTP/1.1. For earlier
versions, we must reject Transfer-Encoding rather than interpret it
since downstream proxies may ignore the chunk header and rely upon the
Content-Length, or interpret the body some other way. These differences
in interpretation may open up the door to compatibility issues. To
protect against this, we reply with a 4xx if the client uses
Transfer-Encoding with HTTP versions that do not support it.
Last-Update: 2022-05-21
Gbp-Pq: Name 0019-CVE_2021_37148.patch
Brian Neradt [Sat, 21 May 2022 17:28:31 +0000 (18:28 +0100)]
Fix output '\n' HTTP field line endings
Origin: upstream
Applied-Upstream: https://github.com/apache/trafficserver/commit/
5cad961c87cb07fbb8fa6890685d9878a169378d
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2022-05-21
This is another attempt to fix what was initially addressed in #8096 but
got backed out via #8305. That more extensive patch was considered too
invasive and potentially risky. This more targeted patch will fix
clients that only send the \n endings but it will force the \r\n line
ending on output.
This was mostly in place except for header lines that get
m_n_v_raw_printable set, which seems to be most header lines. The
addition checks to see if the header line ends in \r\n. If it does not
the m_n_v_raw_printable flag gets cleared and the logic that explicitly
adds the line endings while be invoked on output.
Last-Update: 2022-05-21
Gbp-Pq: Name 0019-CVE_2021_37147.patch
Evan Zelkowitz [Tue, 22 Jun 2021 21:32:55 +0000 (14:32 -0700)]
Fixes (#7971)
Origin: https://github.com/apache/trafficserver/commit/
b82a3d192f995fb9d78e1c44d51d9acca4783277
Bug-Debian-Security: https://security-tracker.debian.org/tracker/CVE-2021-27577
Bug-Debian-Security: https://security-tracker.debian.org/tracker/CVE-2021-32565
Bug-Debian-Security: https://security-tracker.debian.org/tracker/CVE-2021-32566
Bug-Debian-Security: https://security-tracker.debian.org/tracker/CVE-2021-32567
Bug-Debian-Security: https://security-tracker.debian.org/tracker/CVE-2021-35474
Bug-Debian: https://bugs.debian.org/990303
* String the url fragment for outgoing requests (#7966)
Co-authored-by: Susan Hinrichs <shinrich@verizonmedia.com>
(cherry picked from commit
2b13eb33794574e62249997b4ba654d943a10f2d)
* Ensure that the content-length value is only digits (#7964)
Co-authored-by: Susan Hinrichs <shinrich@verizonmedia.com>
(cherry picked from commit
668d0f8668fec1cd350b0ceba3f7f8e4020ae3ca)
* Schedule H2 reenable event only if it's necessary
Co-authored-by: Katsutoshi Ikenoya <kikenoya@yahoo-corp.jp>
* Fix dynamic-stack-buffer-overflow of cachekey plugin (#7945)
* Fix dynamic-stack-buffer-overflow of cachekey plugin
* Check dst_size include null termination
(cherry picked from commit
5a9339d7bc65e1c2d8d2a0fc80bb051daf3cdb0b)
Co-authored-by: Bryan Call <bcall@apache.org>
Co-authored-by: Masakazu Kitajo <maskit@apache.org>
Co-authored-by: Katsutoshi Ikenoya <kikenoya@yahoo-corp.jp>
Co-authored-by: Masaori Koshiba <masaori@apache.org>
Gbp-Pq: Name 0018-Fixes-7971.patch
Alan M. Carroll [Sat, 21 May 2022 17:28:31 +0000 (18:28 +0100)]
Remove python2 vestiges from conf.py, traffic-server.py.
Origin: upstream
Applied-Upstream: https://github.com/apache/trafficserver/commit/
096b2590b6111dd16ec19ca24f88ff41d069f2d0
Reviewed-by: Jean Baptiste Favre <jbfavre@debian.org>
Last-Update: 2020-07-29
Last-Update: 2020-07-29
Gbp-Pq: Name 0017-fix_sphinx_3.0.patch
Matthias Klose [Sat, 21 May 2022 17:28:31 +0000 (18:28 +0100)]
Fix test for python 3.8
Reviewed-by: Jean Baptiste Favre <jbfavre@debian.org>
Last-Update: 2020-02-03
Last-Update: 2020-02-03
Gbp-Pq: Name 0016-fix_python_3.8.patch
Gianfranco Costamagna [Sat, 21 May 2022 17:28:31 +0000 (18:28 +0100)]
Fix LDFLAGS usage,
Forwarded: https://github.com/apache/trafficserver/pull/4793
Last-Update: 2019-01-12
Gbp-Pq: Name 0015-as-needed-fix.patch
Jean Baptiste Favre [Sat, 21 May 2022 17:28:31 +0000 (18:28 +0100)]
Update compilation chain after embedded libyamlcpp removal
Origin: other
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2019-01-30
Last-Update: 2019-01-30
Gbp-Pq: Name 0014-use_system_yaml-cpp.patch
Jean Baptiste Favre [Sat, 21 May 2022 17:28:31 +0000 (18:28 +0100)]
Fix Perl interpreter path
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2019-01-03
Last-Update: 2019-01-03
Gbp-Pq: Name 0013-fix-perl-interpreter-path.patch
Jean Baptiste Favre [Sat, 21 May 2022 17:28:31 +0000 (18:28 +0100)]
Fix various speeling issues
Forwarded: https://github.com/apache/trafficserver/pull/4750
Applied-Upstream: https://github.com/apache/trafficserver/commit/
af0ad4a1880a21743e98331855bb78e15d5406ef
Last-Update: 2019-01-03
Last-Update: 2019-01-03
Gbp-Pq: Name 0012-fix-spelling-checks.patch
zhang [Sat, 21 May 2022 17:28:31 +0000 (18:28 +0100)]
Fix Segmentation fault in ShowCache::handleCacheEvent
Origin: upstream
Bug: https://github.com/apache/trafficserver/issues/4328
Applied-Upstream: https://github.com/apache/trafficserver/commit/
616eb10bfc35599a2c93ff30879d584a05ddf83e
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2018-10-17
Last-Update: 2018-10-17
Gbp-Pq: Name 0011-fix-segfault.patch
Jean Baptiste Favre [Sat, 21 May 2022 17:28:31 +0000 (18:28 +0100)]
Fix build issue with MySQL 8
Origin: other, https://bugs.launchpad.net/ubuntu/+source/trafficserver/+bug/
1795362
Forwarded: https://github.com/apache/trafficserver/pull/4360
Applied-Upstream: https://github.com/apache/trafficserver/commit/
05b30527974416768515506f69da338652c23260
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2018-10-06
The my_bool type is no longer used in MySQL source code.
Any third-party code that used this type to represent C
boolean variables should use the bool or int C type instead.
Last-Update: 2018-10-06
Gbp-Pq: Name 0009-fix-mysql-8-build.patch
Jean Baptiste Favre [Sat, 21 May 2022 17:28:31 +0000 (18:28 +0100)]
Force python3 usage, add libfakeroot-sysv to blacklist
Origin: other
Last-Update: 2018-09-24
Last-Update: 2018-09-24
Gbp-Pq: Name 0008-fix-python-check-unused-dependencies.patch
Jean Baptiste Favre [Sat, 21 May 2022 17:28:31 +0000 (18:28 +0100)]
Make documentation build works outside of git repository
Origin: other
Last-Update: 2019-01-03
Current documentation build requires git and curl to get some stuff from the internet
This patch aims to delete those dependencies, forcing git branch to master,
and using Debian provided plantuml instead of downloading it from apache mirror
Last-Update: 2019-01-03
Gbp-Pq: Name 0006-fix-doc-build.patch
Reiner Herrmann [Sat, 21 May 2022 17:28:31 +0000 (18:28 +0100)]
make the build reproducible
Origin: other, https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=833176
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2016-11-18
Last-Update: 2016-11-18
Gbp-Pq: Name 0003-reproductible-build.patch
Aron Xu [Tue, 2 Feb 2016 04:17:24 +0000 (12:17 +0800)]
Use -mcx16 on x86 platforms only
Gbp-Pq: Name 0001-Use-mcx16-on-x86-platforms-only.patch
Jean Baptiste Favre [Sat, 21 May 2022 17:28:31 +0000 (18:28 +0100)]
trafficserver (8.1.1+ds-1.1+deb11u1) bullseye-security; urgency=high
* Multiple CVE fixes for 8.1.x
+ CVE-2021-37147: Improper input validation vulnerability
+ CVE-2021-37148: Improper input validation vulnerability
+ CVE-2021-37149: Improper Input Validation vulnerability
+ CVE-2021-38161: Improper Authentication vulnerability in TLS origin verification
+ CVE-2021-44040: Improper Input Validation vulnerability in request line parsing
+ CVE-2021-44759: Improper Authentication vulnerability in TLS origin validation
[dgit import unpatched trafficserver 8.1.1+ds-1.1+deb11u1]
Jean Baptiste Favre [Sat, 21 May 2022 17:28:31 +0000 (18:28 +0100)]
Import trafficserver_8.1.1+ds-1.1+deb11u1.debian.tar.xz
[dgit import tarball trafficserver 8.1.1+ds-1.1+deb11u1 trafficserver_8.1.1+ds-1.1+deb11u1.debian.tar.xz]
Salvatore Bonaccorso [Thu, 15 Jul 2021 19:48:17 +0000 (20:48 +0100)]
Merge trafficserver (8.1.1+ds-1.1) import into refs/heads/workingbranch
Evan Zelkowitz [Tue, 22 Jun 2021 21:32:55 +0000 (14:32 -0700)]
Fixes (#7971)
Origin: https://github.com/apache/trafficserver/commit/
b82a3d192f995fb9d78e1c44d51d9acca4783277
Bug-Debian-Security: https://security-tracker.debian.org/tracker/CVE-2021-27577
Bug-Debian-Security: https://security-tracker.debian.org/tracker/CVE-2021-32565
Bug-Debian-Security: https://security-tracker.debian.org/tracker/CVE-2021-32566
Bug-Debian-Security: https://security-tracker.debian.org/tracker/CVE-2021-32567
Bug-Debian-Security: https://security-tracker.debian.org/tracker/CVE-2021-35474
Bug-Debian: https://bugs.debian.org/990303
* String the url fragment for outgoing requests (#7966)
Co-authored-by: Susan Hinrichs <shinrich@verizonmedia.com>
(cherry picked from commit
2b13eb33794574e62249997b4ba654d943a10f2d)
* Ensure that the content-length value is only digits (#7964)
Co-authored-by: Susan Hinrichs <shinrich@verizonmedia.com>
(cherry picked from commit
668d0f8668fec1cd350b0ceba3f7f8e4020ae3ca)
* Schedule H2 reenable event only if it's necessary
Co-authored-by: Katsutoshi Ikenoya <kikenoya@yahoo-corp.jp>
* Fix dynamic-stack-buffer-overflow of cachekey plugin (#7945)
* Fix dynamic-stack-buffer-overflow of cachekey plugin
* Check dst_size include null termination
(cherry picked from commit
5a9339d7bc65e1c2d8d2a0fc80bb051daf3cdb0b)
Co-authored-by: Bryan Call <bcall@apache.org>
Co-authored-by: Masakazu Kitajo <maskit@apache.org>
Co-authored-by: Katsutoshi Ikenoya <kikenoya@yahoo-corp.jp>
Co-authored-by: Masaori Koshiba <masaori@apache.org>
Gbp-Pq: Name 0018-Fixes-7971.patch
Alan M. Carroll [Thu, 15 Jul 2021 19:48:17 +0000 (20:48 +0100)]
Remove python2 vestiges from conf.py, traffic-server.py.
Origin: upstream
Applied-Upstream: https://github.com/apache/trafficserver/commit/
096b2590b6111dd16ec19ca24f88ff41d069f2d0
Reviewed-by: Jean Baptiste Favre <jbfavre@debian.org>
Last-Update: 2020-07-29
Last-Update: 2020-07-29
Gbp-Pq: Name 0017-fix_sphinx_3.0.patch
Matthias Klose [Thu, 15 Jul 2021 19:48:17 +0000 (20:48 +0100)]
Fix test for python 3.8
Reviewed-by: Jean Baptiste Favre <jbfavre@debian.org>
Last-Update: 2020-02-03
Last-Update: 2020-02-03
Gbp-Pq: Name 0016-fix_python_3.8.patch
Gianfranco Costamagna [Thu, 15 Jul 2021 19:48:17 +0000 (20:48 +0100)]
Fix LDFLAGS usage,
Forwarded: https://github.com/apache/trafficserver/pull/4793
Last-Update: 2019-01-12
Gbp-Pq: Name 0015-as-needed-fix.patch
Jean Baptiste Favre [Thu, 15 Jul 2021 19:48:17 +0000 (20:48 +0100)]
Update compilation chain after embedded libyamlcpp removal
Origin: other
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2019-01-30
Last-Update: 2019-01-30
Gbp-Pq: Name 0014-use_system_yaml-cpp.patch
Jean Baptiste Favre [Thu, 15 Jul 2021 19:48:17 +0000 (20:48 +0100)]
Fix Perl interpreter path
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2019-01-03
Last-Update: 2019-01-03
Gbp-Pq: Name 0013-fix-perl-interpreter-path.patch
Jean Baptiste Favre [Thu, 15 Jul 2021 19:48:17 +0000 (20:48 +0100)]
Fix various speeling issues
Forwarded: https://github.com/apache/trafficserver/pull/4750
Applied-Upstream: https://github.com/apache/trafficserver/commit/
af0ad4a1880a21743e98331855bb78e15d5406ef
Last-Update: 2019-01-03
Last-Update: 2019-01-03
Gbp-Pq: Name 0012-fix-spelling-checks.patch
zhang [Thu, 15 Jul 2021 19:48:17 +0000 (20:48 +0100)]
Fix Segmentation fault in ShowCache::handleCacheEvent
Origin: upstream
Bug: https://github.com/apache/trafficserver/issues/4328
Applied-Upstream: https://github.com/apache/trafficserver/commit/
616eb10bfc35599a2c93ff30879d584a05ddf83e
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2018-10-17
Last-Update: 2018-10-17
Gbp-Pq: Name 0011-fix-segfault.patch
Jean Baptiste Favre [Thu, 15 Jul 2021 19:48:17 +0000 (20:48 +0100)]
Fix build issue with MySQL 8
Origin: other, https://bugs.launchpad.net/ubuntu/+source/trafficserver/+bug/
1795362
Forwarded: https://github.com/apache/trafficserver/pull/4360
Applied-Upstream: https://github.com/apache/trafficserver/commit/
05b30527974416768515506f69da338652c23260
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2018-10-06
The my_bool type is no longer used in MySQL source code.
Any third-party code that used this type to represent C
boolean variables should use the bool or int C type instead.
Last-Update: 2018-10-06
Gbp-Pq: Name 0009-fix-mysql-8-build.patch
Jean Baptiste Favre [Thu, 15 Jul 2021 19:48:17 +0000 (20:48 +0100)]
Force python3 usage, add libfakeroot-sysv to blacklist
Origin: other
Last-Update: 2018-09-24
Last-Update: 2018-09-24
Gbp-Pq: Name 0008-fix-python-check-unused-dependencies.patch
Jean Baptiste Favre [Thu, 15 Jul 2021 19:48:17 +0000 (20:48 +0100)]
Make documentation build works outside of git repository
Origin: other
Last-Update: 2019-01-03
Current documentation build requires git and curl to get some stuff from the internet
This patch aims to delete those dependencies, forcing git branch to master,
and using Debian provided plantuml instead of downloading it from apache mirror
Last-Update: 2019-01-03
Gbp-Pq: Name 0006-fix-doc-build.patch
Reiner Herrmann [Thu, 15 Jul 2021 19:48:17 +0000 (20:48 +0100)]
make the build reproducible
Origin: other, https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=833176
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2016-11-18
Last-Update: 2016-11-18
Gbp-Pq: Name 0003-reproductible-build.patch
Aron Xu [Tue, 2 Feb 2016 04:17:24 +0000 (12:17 +0800)]
Use -mcx16 on x86 platforms only
Gbp-Pq: Name 0001-Use-mcx16-on-x86-platforms-only.patch
Salvatore Bonaccorso [Thu, 15 Jul 2021 19:48:17 +0000 (20:48 +0100)]
trafficserver (8.1.1+ds-1.1) unstable; urgency=medium
* Non-maintainer upload.
* Address CVE-2021-27577, CVE-2021-32565, CVE-2021-32566, CVE-2021-32567 and
CVE-2021-35474.
- CVE-2021-27577: Incorrect handling of url fragment leads to cache
poisoning
- CVE-2021-32565: HTTP Request Smuggling, content length with invalid
charters
- CVE-2021-32566: Specific sequence of HTTP/2 frames can cause ATS to
crash
- CVE-2021-32567: Reading HTTP/2 frames too many times
- CVE-2021-35474: Dynamic stack buffer overflow in cachekey plugin
(Closes: #990303)
[dgit import unpatched trafficserver 8.1.1+ds-1.1]
Salvatore Bonaccorso [Thu, 15 Jul 2021 19:48:17 +0000 (20:48 +0100)]
Import trafficserver_8.1.1+ds-1.1.debian.tar.xz
[dgit import tarball trafficserver 8.1.1+ds-1.1 trafficserver_8.1.1+ds-1.1.debian.tar.xz]
Jean Baptiste Favre [Sun, 6 Dec 2020 15:26:39 +0000 (15:26 +0000)]
Merge trafficserver (8.1.1+ds-1) import into refs/heads/workingbranch
Alan M. Carroll [Sun, 6 Dec 2020 15:26:39 +0000 (15:26 +0000)]
Remove python2 vestiges from conf.py, traffic-server.py.
Origin: upstream
Applied-Upstream: https://github.com/apache/trafficserver/commit/
096b2590b6111dd16ec19ca24f88ff41d069f2d0
Reviewed-by: Jean Baptiste Favre <jbfavre@debian.org>
Last-Update: 2020-07-29
Last-Update: 2020-07-29
Gbp-Pq: Name 0017-fix_sphinx_3.0.patch
Matthias Klose [Sun, 6 Dec 2020 15:26:39 +0000 (15:26 +0000)]
Fix test for python 3.8
Reviewed-by: Jean Baptiste Favre <jbfavre@debian.org>
Last-Update: 2020-02-03
Last-Update: 2020-02-03
Gbp-Pq: Name 0016-fix_python_3.8.patch
Gianfranco Costamagna [Sun, 6 Dec 2020 15:26:39 +0000 (15:26 +0000)]
Fix LDFLAGS usage,
Forwarded: https://github.com/apache/trafficserver/pull/4793
Last-Update: 2019-01-12
Gbp-Pq: Name 0015-as-needed-fix.patch
Jean Baptiste Favre [Sun, 6 Dec 2020 15:26:39 +0000 (15:26 +0000)]
Update compilation chain after embedded libyamlcpp removal
Origin: other
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2019-01-30
Last-Update: 2019-01-30
Gbp-Pq: Name 0014-use_system_yaml-cpp.patch
Jean Baptiste Favre [Sun, 6 Dec 2020 15:26:39 +0000 (15:26 +0000)]
Fix Perl interpreter path
Reviewed-by: Jean Baptiste Favre <debian@jbfavre.org>
Last-Update: 2019-01-03
Last-Update: 2019-01-03
Gbp-Pq: Name 0013-fix-perl-interpreter-path.patch
Jean Baptiste Favre [Sun, 6 Dec 2020 15:26:39 +0000 (15:26 +0000)]
Fix various speeling issues
Forwarded: https://github.com/apache/trafficserver/pull/4750
Applied-Upstream: https://github.com/apache/trafficserver/commit/
af0ad4a1880a21743e98331855bb78e15d5406ef
Last-Update: 2019-01-03
Last-Update: 2019-01-03
Gbp-Pq: Name 0012-fix-spelling-checks.patch
projects / trafficserver.git / log