NetCube-Systems-Austria/kumquat-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
271461b81b
kumquat-buildroot/package/haproxy/haproxy.hash
Peter Korsgaard 36c115d0bc package/haproxy: security bump to version 2.4.4 
Fixes the following security issues:

- CVE-2021-40346: An integer overflow exists in HAProxy 2.0 through 2.5 in
  the htx_add_header() can be exploited to perform an HTTP request smuggling
  attack, allowing an attacker to bypass all configured http-request HAProxy
  ACLs and possibly other ACLs.

For more details, see the advisory:
https://www.mail-archive.com/haproxy@formilux.org/msg41114.html

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr>
2021-09-10 22:03:15 +02:00

7 lines
446 B
Plaintext
Raw Blame History

# From: http://www.haproxy.org/download/2.4/src/haproxy-2.4.4.tar.gz.sha256
sha256 116b7329cebee5dab8ba47ad70feeabd0c91680d9ef68c28e41c34869920d1fe haproxy-2.4.4.tar.gz
# Locally computed:
sha256 0717ca51fceaa25ac9e5ccc62e0c727dcf27796057201fb5fded56a25ff6ca28 LICENSE
sha256 5df07007198989c622f5d41de8d703e7bef3d0e79d62e24332ee739a452af62a doc/lgpl.txt
sha256 ddb9db7630752f8fdc6898f7c99a99eaeeac5213627ecb093df9c82f56175dc7 doc/gpl.txt
Reference in New Issue View Git Blame Copy Permalink