--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-10520
2015-06-23 03:02:16
--------------------------------------------------------------------------------

Name        : trafficserver
Product     : Fedora 21
Version     : 5.3.0
Release     : 1.fc21
URL         : https://trafficserver.apache.org/index.html
Summary     : Fast, scalable and extensible HTTP/1.1 compliant caching proxy server
Description :
Apache Traffic Server is a fast, scalable and extensible HTTP/1.1 compliant
caching proxy server.

--------------------------------------------------------------------------------
Update Information:

https://cwiki.apache.org/confluence/display/TS/What%27s+New+in+v5.3.x

--------------------------------------------------------------------------------
ChangeLog:

* Sun Jun 21 2015 Peter Robinson  5.3.0-1
- Update to 5.3.0 LTS release
- Build on aarch64 and power64
- Split perl bindings to sub package
- Cleanup and modernise spec
* Fri Jun 19 2015 Fedora Release Engineering  - 5.0.1-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
* Sat May  2 2015 Kalev Lember  - 5.0.1-3
- Rebuilt for GCC 5 C++11 ABI change
* Mon Jan 26 2015 Petr Machata  - 5.0.1-2
- Rebuild for boost 1.57.0
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1102559 - Add AArch64 support to trafficserver
        https://bugzilla.redhat.com/show_bug.cgi?id=1102559
  [ 2 ] Bug #1103173 - trafficserver: insecure temporary file usage [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=1103173
  [ 3 ] Bug #1179204 - trafficserver: incorrect handling of "Max-Forwards" header [fedora-21]
        https://bugzilla.redhat.com/show_bug.cgi?id=1179204
  [ 4 ] Bug #1103174 - trafficserver: insecure temporary file usage [epel-6]
        https://bugzilla.redhat.com/show_bug.cgi?id=1103174
  [ 5 ] Bug #1133387 - CVE-2014-3525 trafficserver: unspecified flaw related to health checks fixed in versions 4.2.1.1 and 5.0.1 [epel-6]
        https://bugzilla.redhat.com/show_bug.cgi?id=1133387
  [ 6 ] Bug #1179205 - trafficserver: incorrect handling of "Max-Forwards" header [epel-7]
        https://bugzilla.redhat.com/show_bug.cgi?id=1179205
  [ 7 ] Bug #994224 - trafficserver must be compiled with -fno-strict-aliasing, but it is not
        https://bugzilla.redhat.com/show_bug.cgi?id=994224
  [ 8 ] Bug #955127 - trafficserver package should be built with PIE flags
        https://bugzilla.redhat.com/show_bug.cgi?id=955127
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use
su -c 'yum update trafficserver' at the command line.
For more information, refer to "Managing Software with yum",
available at .

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://lists.fedoraproject.org/admin/lists/package-announce.lists.fedoraproject.org/

Fedora 21: trafficserver Security Update

July 3, 2015
https://cwiki.apache.org/confluence/display/TS/What%27s+New+in+v5.3.x

Summary

Apache Traffic Server is a fast, scalable and extensible HTTP/1.1 compliant

caching proxy server.

Update Information:

https://cwiki.apache.org/confluence/display/TS/What%27s+New+in+v5.3.x

Change Log

* Sun Jun 21 2015 Peter Robinson 5.3.0-1 - Update to 5.3.0 LTS release - Build on aarch64 and power64 - Split perl bindings to sub package - Cleanup and modernise spec * Fri Jun 19 2015 Fedora Release Engineering - 5.0.1-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild * Sat May 2 2015 Kalev Lember - 5.0.1-3 - Rebuilt for GCC 5 C++11 ABI change * Mon Jan 26 2015 Petr Machata - 5.0.1-2 - Rebuild for boost 1.57.0

References

[ 1 ] Bug #1102559 - Add AArch64 support to trafficserver https://bugzilla.redhat.com/show_bug.cgi?id=1102559 [ 2 ] Bug #1103173 - trafficserver: insecure temporary file usage [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1103173 [ 3 ] Bug #1179204 - trafficserver: incorrect handling of "Max-Forwards" header [fedora-21] https://bugzilla.redhat.com/show_bug.cgi?id=1179204 [ 4 ] Bug #1103174 - trafficserver: insecure temporary file usage [epel-6] https://bugzilla.redhat.com/show_bug.cgi?id=1103174 [ 5 ] Bug #1133387 - CVE-2014-3525 trafficserver: unspecified flaw related to health checks fixed in versions 4.2.1.1 and 5.0.1 [epel-6] https://bugzilla.redhat.com/show_bug.cgi?id=1133387 [ 6 ] Bug #1179205 - trafficserver: incorrect handling of "Max-Forwards" header [epel-7] https://bugzilla.redhat.com/show_bug.cgi?id=1179205 [ 7 ] Bug #994224 - trafficserver must be compiled with -fno-strict-aliasing, but it is not https://bugzilla.redhat.com/show_bug.cgi?id=994224 [ 8 ] Bug #955127 - trafficserver package should be built with PIE flags https://bugzilla.redhat.com/show_bug.cgi?id=955127

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update trafficserver' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
Name : trafficserver
Product : Fedora 21
Version : 5.3.0
Release : 1.fc21
URL : https://trafficserver.apache.org/index.html
Summary : Fast, scalable and extensible HTTP/1.1 compliant caching proxy server

Related News

28.Lock Globe Esm H320
1 - 2 min read
The intersection of Linux and quantum computing has become increasingly apparent, emphasizing the importance of Linux-based operating systems in
6.EmailConnection Touch Esm H320
2 - 3 min read
Recent security updates for Ubuntu and Debian have been released to address vulnerabilities in Thunderbird, the popular open-source mail and
30.Lock Globe Motherboard Esm H320
1 - 2 min read
As cybersecurity practitioners, we are no strangers to the constant threat of malicious actors and the importance of remaining vigilant to protect
22.Lock ScreenEffect Esm H320
1 - 2 min read
EndeavorOS Gemini is a captivating and charming desktop operating system based on Arch Linux. The new release includes a kernel upgrade, 3D graphics
25.@Sign Hook Keyboard Esm H320
1 min read
Cyber risk is increasing for individuals and organizations, making flexible and robust solutions for identifying spam and malware increasingly
19.Laptop Bed Esm H320
2 - 3 min read
The recently released Linux Kernel 6.9 brings forth a blend of crucial upgrades and enhancements, catering to the ever-evolving needs of the Linux
4.Lock AbstractDigital Esm H320
1 - 2 min read
Nmap 7.95 introduces myriad enhancements, primarily focusing on OS and service detection signatures. This reflects the dedication of the Nmap
5.ShakingHands Esm H320
3 - 5 min read
There has been a promising shift in the tech industry, with major companies pledging to release products with built-in security features. This

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved