[Pkg-haproxy-maintainers] Bug#771043: unblock: haproxy/1.5.9-1 (pre-approval)

Apollon Oikonomopoulos apoikos at debian.org
Wed Nov 26 09:39:05 UTC 2014 

Package: release.debian.org
Severity: normal
User: release.debian.org at packages.debian.org
Usertags: unblock

Hi,

We would like to get your approval before uploading 1.5.9-1 to unstable.
Upstream has released a new stable release in the 1.5 branch, containing 
important bugfixes and a minor new feature. The bugfixes (sorted by 
severity) are:

 - BUG/MAJOR: frontend: initialize capture pointers earlier
 - BUG/MAJOR: sessions: unlink session from list on out of memory
 - BUG/MEDIUM: checks: fix conflicts between agent checks and ssl healthchecks
 - BUG/MEDIUM: connection: sanitize PPv2 header length before parsing
               address information
 - BUG/MEDIUM: pattern: don't load more than once a pattern list.
 - BUG/MEDIUM: ssl: fix bad ssl context init can cause segfault in case of OOM.
 - BUG/MEDIUM: ssl: force a full GC in case of memory shortage
 - BUG/MINOR: config: don't inherit the default balance algorithm in frontends
 - BUG/MINOR: peers: the buffer size is global.tune.bufsize, not trash.size
 - BUG/MINOR: samples: fix unnecessary memcopy converting binary to string.
 - BUG/MINOR: stats: correctly set the request/response analysers
 - BUILD: fix "make install" to support spaces in the install dirs
 - DOC: fix typo in the body parser documentation for msg.sov

The first major bugfix fixes a segfault when haproxy is used in TCP mode 
and payload inspection is performed, as reported in

          http://marc.info/?l=haproxy&m=141694607720769&w=2

The other major bugfix fixes a potential memory corruption under memory 
pressure.

The only new feature is adding access to three internal variables (the 
number of processes, the process number and whether a process is
shutting down) that can be used for logging and debugging purposes.

The full changes against 1.5.8-1 are attached as a debdiff.

unblock haproxy/1.5.9-1

-- System Information:
Debian Release: jessie/sid
  APT prefers testing
  APT policy: (500, 'testing'), (90, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 3.16-3-amd64 (SMP w/4 CPU cores)
Locale: LANG=el_GR.UTF-8, LC_CTYPE=el_GR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
-------------- next part --------------
A non-text attachment was scrubbed...
Name: haproxy_1.5.9-1.patch
Type: text/x-diff
Size: 26640 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-haproxy-maintainers/attachments/20141126/83f2b9c7/attachment-0001.patch>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-haproxy-maintainers/attachments/20141126/83f2b9c7/attachment-0001.sig>

More information about the Pkg-haproxy-maintainers mailing list