openSUSE 15.1: 2019:2556-1 Moderate: Haproxy Cookie Corruption Fix

This update for haproxy to version 2.0.5+git0.d905f49a fixes the following

issues:

Security issue fixed:

- CVE-2019-14241: Fixed a cookie memory corruption problem. (bsc#1142529)

The update to 2.0.5 brings lots of features and bugfixes:

- new internal native HTTP representation called HTX, was already in 1.9

and is now enabled by default in 2.0

- end-to-end HTTP/2 support including trailers and continuation frames, as

needed for gRPC ; HTTP/2 may also be upgraded from HTTP/1.1 using the H2

preface;

- server connection pooling and more advanced reuse, with ALPN protocol

negotiation (already in 1.9)

- layer 7 retries, allowing to use 0-RTT and TCP Fast Open to the servers as well as on the frontend

- much more scalable multi-threading, which is even enabled by default on

platforms where it was successfully tested ; by default, as many threads

are started as the number of CPUs haproxy is allowed to run on. This

...