Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package haproxy for openSUSE:Factory checked
in at 2024-09-04 13:23:56
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/haproxy (Old)
and /work/SRC/openSUSE:Factory/.haproxy.new.10096 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "haproxy"
Wed Sep 4 13:23:56 2024 rev:147 rq:1198535 version:3.0.4+git0.7a59afa93
Changes:
--------
--- /work/SRC/openSUSE:Factory/haproxy/haproxy.changes 2024-07-12
17:04:45.652378163 +0200
+++ /work/SRC/openSUSE:Factory/.haproxy.new.10096/haproxy.changes
2024-09-04 13:24:13.916782133 +0200
@@ -1,0 +2,48 @@
+Tue Sep 03 14:08:47 UTC 2024 - mrueck...@suse.de
+
+- Update to version 3.0.4+git0.7a59afa93: (CVE-2024-45506 boo#1229993)
+ * [RELEASE] Released version 3.0.4
+ * BUG/MEDIUM: mux-pt: Fix condition to perform a shutdown for writes in
mux_pt_shut()
+ * BUG/MINOR: Crash on O-RTT RX packet after dropping Initial pktns
+ * BUG/MINOR: quic: Too shord datagram during O-RTT handshakes (aws-lc only)
+ * BUG/MAJOR: mux-h2: always clear MUX_MFULL and DEM_MROOM when clearing the
mbuf
+ * MINOR: mux-h2: try to clear DEM_MROOM and MUX_MFULL at more places
+ * BUG/MEDIUM: mux-h1: Properly handle empty message when an error is
triggered
+ * BUG/MINOR: quic: unexploited retransmission cases for Initial pktns.
+ * BUG/MEDIUM: cli: Always release back endpoint between two commands on the
mcli
+ * BUG/MEDIUM: mux-pt: Never fully close the connection on shutdown
+ * BUG/MINIR: proxy: Match on 429 status when trying to perform a L7 retry
+ * BUG/MEDIUM: stream: Prevent mux upgrades if client connection is no longer
ready
+ * BUG/MEDIUM: mux-h2: Set ES flag when necessary on 0-copy data forwarding
+ * MINOR: proxy: Add support of 429-Too-Many-Requests in retry-on status
+ * DOC: quic: fix default minimal value for max window size
+ * MEDIUM: log: relax some checks and emit diag warnings instead in
lf_expr_postcheck()
+ * Revert "MEDIUM: sink: don't set NOLINGER flag on the outgoing stream
interface"
+ * BUG/MEDIUM: init: fix fd_hard_limit default in compute_ideal_maxconn
+ * MEDIUM: init: set default for fd_hard_limit via DEFAULT_MAXFD (take #2)
+ * BUG/MEDIUM: queue: deal with a rare TOCTOU in assign_server_and_queue()
+ * MINOR: queue: add a function to check for TOCTOU after queueing
+ * MEDIUM: h1: allow to preserve keep-alive on T-E + C-L
+ * MINOR: quic: Add information to "show quic" for CUBIC cc.
+ * MINOR: quic: Dump TX in flight bytes vs window values ratio.
+ * BUG/MEDIUM: jwt: Clear SSL error queue on error when checking the signature
+ * BUG/MINOR: quic: Lack of precision when computing K (cubic only cc)
+ * MEDIUM: sink: don't set NOLINGER flag on the outgoing stream interface
+ * BUG/MINOR: quic: Non optimal first datagram.
+ * BUG/MINOR: cli: Atomically inc the global request counter between CLI
commands
+ * BUG/MINOR: server: Don't warn fallback IP is used during init-addr
resolution
+ * BUG/MINOR: stick-table: fix crash for src_inc_gpc() without stkcounter
+ * DOC: config: improve the http-keep-alive section
+ * DOC: configuration: issuers-chain-path not compatible with OCSP
+ * BUG/MAJOR: mux-h2: force a hard error upon short read with pending error
+ * BUG/MEDIUM: ssl_sock: fix deadlock in ssl_sock_load_ocsp() on error path
+ * DOC: install: don't reference removed CPU arg
+ * BUG/MEDIUM: debug/cli: fix "show threads" crashing with low thread counts
+ * BUG/MINOR: session: Eval L4/L5 rules defined in the default section
+ * CLEANUP: quic: rename TID affinity elements
+ * CLEANUP: proto: rename TID affinity callbacks
+ * BUG/MEDIUM: quic: prevent crash on accept queue full
+ * BUILD: listener: silence a build warning about unused value without threads
+ * MINOR: proto: extend connection thread rebind API
+
+-------------------------------------------------------------------
Old:
----
haproxy-3.0.3+git0.95a607c4b.tar.gz
New:
----
haproxy-3.0.4+git0.7a59afa93.tar.gz
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ haproxy.spec ++++++
--- /var/tmp/diff_new_pack.JyRukQ/_old 2024-09-04 13:24:14.628811927 +0200
+++ /var/tmp/diff_new_pack.JyRukQ/_new 2024-09-04 13:24:14.628811927 +0200
@@ -53,7 +53,7 @@
%endif
Name: haproxy
-Version: 3.0.3+git0.95a607c4b
+Version: 3.0.4+git0.7a59afa93
Release: 0
#
#
++++++ _service ++++++
--- /var/tmp/diff_new_pack.JyRukQ/_old 2024-09-04 13:24:14.668813601 +0200
+++ /var/tmp/diff_new_pack.JyRukQ/_new 2024-09-04 13:24:14.668813601 +0200
@@ -6,7 +6,7 @@
<param name="versionformat">@PARENT_TAG@+git@TAG_OFFSET@.%h</param>
<param name="versionrewrite-pattern">v(.*)</param>
<param name="versionrewrite-replacement">\1</param>
- <param name="revision">v3.0.3</param>
+ <param name="revision">v3.0.4</param>
<param name="changesgenerate">enable</param>
</service>
++++++ _servicedata ++++++
--- /var/tmp/diff_new_pack.JyRukQ/_old 2024-09-04 13:24:14.688814438 +0200
+++ /var/tmp/diff_new_pack.JyRukQ/_new 2024-09-04 13:24:14.692814605 +0200
@@ -1,7 +1,7 @@
<servicedata>
<service name="tar_scm">
<param name="url">http://git.haproxy.org/git/haproxy-3.0.git/</param>
- <param
name="changesrevision">95a607c4b3af09be2a495b9c2872ea252ccff603</param>
+ <param
name="changesrevision">7a59afa93ba909a8219307e62f88f81abe7615ef</param>
</service>
</servicedata>
(No newline at EOF)
++++++ haproxy-3.0.3+git0.95a607c4b.tar.gz ->
haproxy-3.0.4+git0.7a59afa93.tar.gz ++++++
++++ 1631 lines of diff (skipped)
