ELBA-2022-17774

ELBA-2022-17774 - trafficserver Bug Fix update

Type:BUG
Severity:NA
Release Date:2022-06-27

Description


[9.1.2-8]
- Cherry-pick OpenSSL 3 compatibility required for RHEL 9
- Switch to OpenSSL 3 on f36+
- Include automake in BuildRequires

[9.1.2-7]
- Exclude s390x architecture -- not supported upstream

[9.1.2-6]
- Further changes based on package review; perl dependencies, paths

[9.1.2-5]
- Changes based on spec review; change 'RedHat' capitalization,
and add link to upstream file layout discussion

[9.1.2-4]
- Changes based on spec review

[9.1.2-3]
- Allow self:process setsched, requested on EL8

[9.1.2-2]
- Set SELinux policy to be more restrictive on privileged UDP ports

[9.1.2-1]
- Initial revision
- Adapt to modern rpm conventions
- Add draft SELinux policy
- Don't run as root, just claim CAP_NET_BIND_SERVICE for
privileged ports
- Merge and cleanup of upstream .spec file along with Copr version
maintained by Hiroaki Nakamura , based on
long-ophaned package. ChangeLog included below for reference.

[9.1.1-1]
- Update to 9.1.1

[9.1.0-1]
- Update to 9.1.0
- Disable mime-sanity-check which is usable only in debug build

[9.0.2-1]
- Update to 9.0.2
- Use yaml-cpp vendored in lib/yamlcpp

[8.1.2-1]
- Update to 8.1.2

[8.0.5-1]
- Update to 8.0.5 LTS release

[7.1.8-1]
- Update to 7.1.8 LTS release

[7.1.6-1]
- Update to 7.1.6 LTS release
- Return stale cache with s-maxage only if
cache_required_headers is 99

[7.1.3-1]
- Update to 7.1.3 LTS release

[7.1.2-1]
- Update to 7.1.2 LTS release

[7.1.1-1]
- Update to 7.1.1 LTS release

[7.1.0-1]
- Update to 7.1.0 LTS release

[7.0.0-2]
- Remove expat-devel from build dependencies

[7.0.0-1]
- Update to 7.0.0 LTS release

[6.2.0-2]
- Return stale cache even if the origin server response has
'Cache-Control: s-maxage' header.

[6.2.0-1]
- Update to 6.2.0 LTS release

[6.1.1-10]
- Add patch to add new value to proxy.config.http.cache.required_headers
to require s-maxage for contents to be cached.
- Remove patch to concatenate multiple header values of
the same name in TSLua.

[6.1.1-9]
- Fix bug in patch to concatenate multiple header values of
the same name in TSLua.

[6.1.1-8]
- Concatenate multiple header values of the same name in TSLua.

[6.1.1-7]
- Remove patch to add proxy.config.http.cache.ignore_expires and
proxy.config.http.cache.ignore_server_cc_max_age.

[6.1.1-6]
- Apply patch to add proxy.config.http.cache.ignore_expires and
proxy.config.http.cache.ignore_server_cc_max_age.

[6.1.1-5]
- Disable patch to enable unix domain socket.

[6.1.1-4]
- Apply patch to enable unix domain socket.

[6.1.1-3]
- Enable luajit

[6.1.1-2]
- Set prefix to /opt/trafficserver and use relative directories

[6.1.1-1]
- Update to 6.1.1 LTS release

[6.1.0-1]
- Update to 6.1.0 LTS release

[6.0.0-3]
- Build experimental plugins

[6.0.0-2]
- Just use configure --disable-luajit without a patch or deleting files

[6.0.0-1]
- Update to 6.0.0 LTS release

[5.3.0-2]
- Add patch to cache_insepector to split multiline URLs correctly

[5.3.0-1]
- Update to 5.3.0 LTS release
- Build on aarch64 and power64
- Split perl bindings to sub package
- Cleanup and modernise spec

[5.0.1-4]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild

[5.0.1-3]
- Rebuilt for GCC 5 C++11 ABI change

[5.0.1-2]
- Rebuild for boost 1.57.0

[5.0.1-1]
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild

[5.0.1-0]
- Fix CVE-2014-3525




Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 8 (x86_64) trafficserver-9.1.2-8.el8.src.rpm351ae6c15fc504ed1afdbc782ff2f5c5-
trafficserver-9.1.2-8.el8.x86_64.rpmb1bf8c5bf94b21e1d78eb89ae1fe7e53-
trafficserver-devel-9.1.2-8.el8.noarch.rpm3bd54d7558e9efcb48f102b1a905d5b7-
trafficserver-perl-9.1.2-8.el8.noarch.rpmdd082f1458e8bcf0439904d373b50dc2-
trafficserver-selinux-9.1.2-8.el8.noarch.rpmb5aff0d8d6f293a7d02fdcfb242d2031-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete