Updated haproxy package fixes some bugs
Publication date: 22 Aug 2024Modification date: 22 Aug 2024
Type: bugfix
Affected Mageia releases : 9
Description
Haproxy has three major, few medium and few minor bugs fixed in last upstream
version 2.8.10 of branch 2.8
Fixed major bug list:
- connection: fix server used_conns with H2 + reuse safe
- quic: Crash with TLS_AES_128_CCM_SHA256 (libressl only)
- server: do not delete srv referenced by session
Fixed medium bug list:
- applet: Fix applet API to put input data in a buffer
- cache: Vary not working properly on anything other than accept-encoding
- config: prevent communication with privileged ports
- evports: do not clear returned events list on signal
- fd: prevent memory waste in fdtab array
- grpc: Fix several unaligned 32/64 bits accesses
- h1: Reject CONNECT request if the target has a scheme
- http-ana: Deliver 502 on keep-alive for fressh server connection
- http_ana: ignore NTLM for reuse aggressive/always and no H1
- htx: mark htx_sl as packed since it may be realigned
- mux-quic: Create sedesc in same time of the QUIC stream
- peers: Fix exit condition when max-updates-at-once is reached
- peers/trace: fix crash when listing event types
- quic: don't blindly rely on unaligned accesses
- quic: fix connection freeze on post handshake
- quic_tls: prevent LibreSSL < 4.0 from negotiating CHACHA20_POLY1305
- server: fix dynamic servers initial settings
- spoe: Always retry when an applet fails to send a frame
- ssl: wrong priority whem limiting ECDSA ciphers in ECDSA+RSA configuration
- stconn: Don't forward channel data if input data must be filtered
- stick-tables: properly mark stktable_data as packed
References
SRPMS
9/core
- haproxy-2.8.10-1.mga9