Your message dated Fri, 10 May 2013 15:00:11 +0000
with message-id <[email protected]>
and subject line Bug#704611: fixed in haproxy 1.4.23-1
has caused the Debian Bug report #704611,
regarding haproxy: CVE-2013-1912: crash on TCP content inspection rules
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
704611: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=704611
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: haproxy
Severity: important
Tags: security upstream
Hi,
the following vulnerability was published for haproxy.
CVE-2013-1912[0]:
crash on TCP content inspection rules
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1912
http://security-tracker.debian.org/tracker/CVE-2013-1912
[1] http://git.1wt.eu/web?p=haproxy-1.4.git;a=commitdiff;h=dc80672211
[2] http://marc.info/?l=oss-security&m=136495389819925&w=2
Please adjust the affected versions in the BTS as needed.
Regards,
Salvatore
--- End Message ---
--- Begin Message ---
Source: haproxy
Source-Version: 1.4.23-1
We believe that the bug you reported is fixed in the latest version of
haproxy, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Vincent Bernat <[email protected]> (supplier of updated haproxy package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Mon, 06 May 2013 20:02:14 +0200
Source: haproxy
Binary: haproxy vim-haproxy
Architecture: source amd64 all
Version: 1.4.23-1
Distribution: unstable
Urgency: low
Maintainer: Debian HAProxy Maintainers
<[email protected]>
Changed-By: Vincent Bernat <[email protected]>
Description:
haproxy - fast and reliable load balancing reverse proxy
vim-haproxy - syntax highlighting for HAProxy configuration files
Closes: 641762 643650 649085 674447 678953 702893 704611 706890
Changes:
haproxy (1.4.23-1) unstable; urgency=low
.
[ Apollon Oikonomopoulos ]
* New upstream version (Closes: #643650, #678953)
+ This fixes CVE-2012-2942 (Closes: #674447)
+ This fixes CVE-2013-1912 (Closes: #704611)
* Ship vim addon as vim-haproxy (Closes: #702893)
* Check for the configuration file after sourcing /etc/default/haproxy
(Closes: #641762)
* Use /dev/log for logging by default (Closes: #649085)
.
[ Vincent Bernat ]
* debian/control:
+ add Vcs-* fields
+ switch maintenance to Debian HAProxy team. (Closes: #706890)
+ drop dependency to quilt: 3.0 (quilt) format is in use.
* debian/rules:
+ don't explicitly call dh_installchangelog.
+ use dh_installdirs to install directories.
+ use dh_install to install error and configuration files.
+ switch to `linux2628` Makefile target for Linux.
* debian/postrm:
+ remove haproxy user and group on purge.
* Ship a more minimal haproxy.cfg file: no `listen` blocks but `global`
and `defaults` block with appropriate configuration to use chroot and
logging in the expected way.
.
[ Prach Pongpanich ]
* debian/copyright:
+ add missing copyright holders
+ update years of copyright
* debian/rules:
+ build with -Wl,--as-needed to get rid of unnecessary depends
* Remove useless files in debian/haproxy.{docs,examples}
* Update debian/watch file, thanks to Bart Martens
Checksums-Sha1:
f398a8443724f3c6896237fb3b76dc93d66a47f9 2059 haproxy_1.4.23-1.dsc
841c6d0f9ad3fcbc7b01c17e40edc980853790f4 835938 haproxy_1.4.23.orig.tar.gz
6b8e87da4539b611f29de0570f37838183bd2010 9245 haproxy_1.4.23-1.debian.tar.gz
35034c465055b451632d5424a8e9fecf795bcdfb 417024 haproxy_1.4.23-1_amd64.deb
ccae0ca7b65097044054fc2585091895a3c2d85d 50018 vim-haproxy_1.4.23-1_all.deb
Checksums-Sha256:
cae90ad3fb7f2e0847b38822c94935ec0495200fb9001380e77e2e8e5b579e28 2059
haproxy_1.4.23-1.dsc
8d0676027a0eca9d1eb8409977ae916fe94913fbbcaf7c278021cc21d897ee6d 835938
haproxy_1.4.23.orig.tar.gz
745697404c2c5ed82fa5065da79deead850917bd399005e0167d1a07b16bc3a1 9245
haproxy_1.4.23-1.debian.tar.gz
a69b2f7dc09bb9207882d42b332e4e3577be71b1c2605fc417402227165049ac 417024
haproxy_1.4.23-1_amd64.deb
eb4a5dbc00ecf8ff1e4f733cf4618df9d638be6ea244e0d063fede3279d5b52d 50018
vim-haproxy_1.4.23-1_all.deb
Files:
cf8b6676bd27d1c65ee633a4d65e6ecf 2059 net optional haproxy_1.4.23-1.dsc
5803664782f8f1692ccbbd03555061f1 835938 net optional haproxy_1.4.23.orig.tar.gz
3f5d5dd4463792e585bc1d493574f41e 9245 net optional
haproxy_1.4.23-1.debian.tar.gz
17e1d62b7c1107b1917a2636578c01c9 417024 net optional haproxy_1.4.23-1_amd64.deb
94e059c7a6af20461f6693500a4ea987 50018 net optional
vim-haproxy_1.4.23-1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
iQIcBAEBCAAGBQJRh/NaAAoJEJWkL+g1NSX5o8QP/inbDHXysUDT5McNBbKjvgVK
/pUUF1yU08ra2dOPHHKWBzdS2WwnZiULuuIsOrE7NRiyLCNUqnhL8rSQmVwlI0I+
vmi9yXmO21FfMxV0O8mOqxLZk4gIR1zDSGviT2AIjg/kIsHsH2gryG1KPvriCIzV
DcVLzW+x7lI+zm71GGC+QbbcaHzpzoU8YTckPoHx8zcCcOsr4Q4gFzK1MIRucCdj
109pFTu/nQYtTYRL/zM4pnd26ENDQaOjC0+NSPeVIEn5BMbXr6TDvK5Kdd5jWEYZ
7MPE6b2/49DWVBC2lbqu/zuqfNjiy6PkSx2j3EVEkw3U9kqO8cwIG5pYUvrmDgOo
IVmhdcQ2weZIsS9nws/I+DT3uiIe5ezo0tmTXE3wuD/zqHMWHRe2b+++1DTs+jyj
Ky5XaSQLd7+T4Te2JRCheWBR1OB+8er+Tk4ffY3233vy2ToMAGy5dn5zEYzKw+bo
XJWzHzKvrt6URU4Qyfvz7uMckJvqnvFAnaxtZEREbqRkHlAeCoxxucQDpR8zyAnf
p0Wt6roDJfY0V/XaKX38RI/4P+DorRi5AQzjmKzfC9b5vLuiy9aqIE9c68cCokuW
3mmGe1LlDV1KL9bwqtqTAN8Mv4IJMJBEmEexI6KbLTIlr3w2I9JfABrvDTSpgQGh
JUI3ggs8XjbOGKAiS5bB
=Yd7g
-----END PGP SIGNATURE-----
--- End Message ---
