| Revision Date: | 2022-08-06 | Version: | 1 |
| Title: | Security update for caddy (Moderate) |
| Description: |
This update for caddy fixes the following issues:
Update to version 2.5.2:
admin: expect quoted ETags (#4879) * headers: Only replace known placeholders (#4880) * reverseproxy: Err 503 if all upstreams unavailable * reverseproxy: Adjust new TLS Caddyfile directive names (#4872) * fileserver: Use safe redirects in file browser * admin: support ETag on config endpoints (#4579) * caddytls: Reuse issuer between PreCheck and Issue (#4866) * admin: Implement /adapt endpoint (close #4465) (#4846) * forwardauth: Fix case when `copy_headers` is omitted (#4856) * Expose several Caddy HTTP Matchers to the CEL Matcher (#4715) * reverseproxy: Fix double headers in response handlers (#4847) * reverseproxy: Fix panic when TLS is not configured (#4848) * reverseproxy: Skip TLS for certain configured ports (#4843) * forwardauth: Support renaming copied headers, block support (#4783) * Add comment about xcaddy to main * headers: Support wildcards for delete ops (close #4830) (#4831) * reverseproxy: Dynamic ServerName for TLS upstreams (#4836) * reverseproxy: Make TLS renegotiation optional * reverseproxy: Add renegotiation param in TLS client (#4784) * caddyhttp: Log error from CEL evaluation (fix #4832) * reverseproxy: Correct the `tls_server_name` docs (#4827) * reverseproxy: HTTP 504 for upstream timeouts (#4824) * caddytls: Make peer certificate verification pluggable (#4389) * reverseproxy: api: Remove misleading 'healthy' value * Fix #4822 and fix #4779 * reverseproxy: Add --internal-certs CLI flag #3589 (#4817) * ci: Fix build caching on Windows (#4811) * templates: Add `humanize` function (#4767) * core: Micro-optim in run() (#4810) * httpcaddyfile: Add `{err.*}` placeholder shortcut (#4798) * templates: Documentation consistency (#4796) * chore: Bump quic-go to v0.27.0 (#4782) * reverseproxy: Support http1.1>h2c (close #4777) (#4778) * rewrite: Handle fragment before query (fix #4775) [boo#1201822, CVE-2022-34037] * httpcaddyfile: Support multiple values for `default_bind` (#4774)
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1201822
CVE-2017-7960
CVE-2017-7960
CVE-2017-7961
CVE-2017-7961
CVE-2022-34037
openSUSE-SU-2022:10080-1
|
| Platform(s): | openSUSE 12.3 Update
openSUSE 13.1
openSUSE Leap 15.4
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 15 SP1
SUSE Linux Enterprise for SAP 12
SUSE Linux Enterprise High Availability 12
SUSE Linux Enterprise High Availability 12 SP1
SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Live Patching 12
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for Containers 12
SUSE Linux Enterprise Module for Development Tools 15
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Storage 6
SUSE Manager Proxy 4.0
SUSE Manager Server 4.0
| Product(s): | |
| Definition Synopsis |
| openSUSE Leap 15.4 is installed AND caddy-2.5.2-bp154.2.8.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 12 SP1 is installed
AND Package Information
libxerces-c-3_1-3.1.1-4 is installed
OR libxerces-c-3_1-32bit-3.1.1-4 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
AND Package Information
libcroco-0.6.12-2.38 is installed
OR libcroco-0_6-3-0.6.12-2.38 is installed
OR libcroco-0_6-3-32bit-0.6.12-2.38 is installed
OR libcroco-devel-0.6.12-2.38 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
AND Package Information
libcroco-0.6.12-2 is installed
OR libcroco-0_6-3-0.6.12-2 is installed
OR libcroco-0_6-3-32bit-0.6.12-2 is installed
OR libcroco-devel-0.6.12-2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Module for Development Tools 15 is installed
AND Package Information
kernel-docs-4.12.14-23 is installed
OR kernel-obs-build-4.12.14-23 is installed
OR kernel-source-4.12.14-23 is installed
OR kernel-syms-4.12.14-23 is installed
OR kernel-vanilla-base-4.12.14-23 is installed
|