import CS haproxy-2.4.22-1.el9

2023-09-21 18:50:12 +00:00 · 2023-09-21 18:50:12 +00:00 · 994876f7f3
commit 994876f7f3
parent 53fecd0a7d
3 changed files with 16 additions and 4 deletions
--- a/.gitignore
+++ b/.gitignore
@ -1 +1 @@
-SOURCES/haproxy-2.4.17.tar.gz
+SOURCES/haproxy-2.4.22.tar.gz
--- a/.haproxy.metadata
+++ b/.haproxy.metadata
@ -1 +1 @@
-28a0b8de9a6a4095406d190b83a024a11d7aedf6 SOURCES/haproxy-2.4.17.tar.gz
+d0654cbab48039d998fca2459ce9251c6dbf2ae8 SOURCES/haproxy-2.4.22.tar.gz
--- a/SPECS/haproxy.spec
+++ b/SPECS/haproxy.spec
@ -7,8 +7,8 @@
 %global _hardened_build 1

 Name:           haproxy
-Version:        2.4.17
-Release:        4%{?dist}
+Version:        2.4.22
+Release:        1%{?dist}
 Summary:        HAProxy reverse proxy for high availability environments

 License:        GPLv2+
@ -132,6 +132,18 @@ done
 %{_sysusersdir}/%{name}.conf

 %changelog
+* Tue Jun 06 2023 Ryan O'Hara <rohara@redhat.com> - 2.4.22-1
+- Update to 2.4.22 (#2196530)
+
+* Tue May 02 2023 Ryan O'Hara <rohara@redhat.com> - 2.4.17-7
+- Fix uninitizalized resevered bytes (CVE-2023-0836, #2180861)
+
+* Mon Feb 27 2023 Ryan O'Hara <rohara@redhat.com> - 2.4.17-6
+- Reject empty http header field names (CVE-2023-25725, #2169510)
+
+* Mon Feb 27 2023 Ryan O'Hara <rohara@redhat.com> - 2.4.17-5
+- Refuse interim responses with end-stream flag set (CVE-2023-0056, #2161140)
+
 * Wed Nov 30 2022 Ryan O'Hara <rohara@redhat.com> - 2.4.17-4
 - Use systemd-sysusers for user/group creation (#2095422)