nixpkgs/pkgs/servers/http
Malte Poll 7e537acfea envoy: 1.30.1 -> 1.30.2
Contains security fixes for:
- [CVE-2024-34362: Crash (use-after-free) in EnvoyQuicServerStream](GHSA-hww5-43gv-35jv)
- [CVE-2024-34363: Crash due to uncaught nlohmann JSON exception](GHSA-g979-ph9j-5gg4)
- [CVE-2024-34364: Envoy OOM vector from HTTP async client with unbounded response buffer for mirror response, and other components](GHSA-xcj3-h7vf-fw26)
- [CVE-2024-32974: Crash in EnvoyQuicServerStream::OnInitialHeadersComplete()](GHSA-mgxp-7hhp-8299)
- [CVE-2024-32975: Crash in QuicheDataReader::PeekVarInt62Length()](GHSA-g9mq-6v96-cpqc)
- [CVE-2024-32976: Endless loop while decompressing Brotli data with extra input](GHSA-7wp5-c2vq-4f8m)
- [CVE-2024-23326: Envoy incorrectly accepts HTTP 200 response for entering upgrade mode](GHSA-vcf8-7238-v74c)
2024-06-05 16:56:59 +02:00
..
angie treewide: remove unused fetchpatch arguments 2024-06-04 12:40:25 +02:00
apache-httpd apacheHttpd: 2.4.58 -> 2.4.59 2024-04-04 21:11:38 +02:00
apache-modules pkgs/servers: remove licenses.gpl2 2024-05-23 11:49:42 +03:00
apt-cacher-ng treewide: add meta.mainProgram to packages with a single binary 2024-03-19 03:14:51 +01:00
bozohttpd bozohttpd: 20220517 -> 20240126 2024-02-06 06:11:59 +00:00
cgiserver cgiserver.meta.mainProgram: init 2024-01-16 23:00:13 +01:00
couchdb couchdb3: 3.3.2 -> 3.3.3 2023-12-05 21:56:08 +01:00
darkhttpd treewide: add meta.mainProgram to packages with a single binary 2024-03-19 03:14:51 +01:00
dave
dufs dufs: 0.40.0 -> 0.41.0 2024-05-22 14:41:07 +00:00
envoy envoy: 1.30.1 -> 1.30.2 2024-06-05 16:56:59 +02:00
gatling pkgs/servers: remove licenses.gpl2 2024-05-23 11:49:42 +03:00
h2o
hiawatha pkgs/servers: remove licenses.gpl2 2024-05-23 11:49:42 +03:00
hyp treewide: add meta.mainProgram to packages with a single binary 2024-03-19 03:14:51 +01:00
jboss
jetty jetty: 12.0.8 -> 12.0.9 2024-05-25 15:18:43 -04:00
lighttpd treewide: remove unused fetchpatch arguments 2024-06-04 12:40:25 +02:00
lwan pkgs/servers: remove licenses.gpl2 2024-05-23 11:49:42 +03:00
merecat merecat: use finalAttrs pattern 2024-03-05 09:50:17 +01:00
micro-httpd
mini-httpd treewide: add meta.mainProgram to packages with a single binary 2024-03-19 03:14:51 +01:00
nginx treewide: remove unused fetchpatch arguments 2024-06-04 12:40:25 +02:00
nix-binary-cache
openresty openresty: 1.21.4.1 -> 1.21.4.3 2024-01-01 09:48:41 +02:00
pomerium pomerium: 0.25.2 -> 0.26.0 2024-05-26 12:29:32 -05:00
pshs treewide: add meta.mainProgram to packages with a single binary 2024-03-19 03:14:51 +01:00
quark treewide: add meta.mainProgram to packages with a single binary 2024-03-19 03:14:51 +01:00
ran treewide: add meta.mainProgram to packages with a single binary 2024-03-19 03:14:51 +01:00
redstore treewide: add meta.mainProgram to packages with a single binary 2024-03-19 03:14:51 +01:00
router Merge pull request #257553 from KGB33/update-router 2024-01-25 15:59:59 -05:00
showoff
spawn-fcgi treewide: add meta.mainProgram to packages with a single binary 2024-03-19 03:14:51 +01:00
tengine treewide: add meta.mainProgram to packages with a single binary 2024-03-19 03:14:51 +01:00
thttpd
tomcat tomcat10: 10.1.20 -> 10.1.23 2024-04-30 23:05:37 +02:00
trafficserver trafficserver: 9.2.3 -> 9.2.4 2024-04-11 07:37:19 +02:00
unit unit: 1.32.0 -> 1.32.1 2024-03-27 23:57:00 -04:00
webfs pkgs/servers: remove licenses.gpl2 2024-05-23 11:49:42 +03:00
webhook treewide: add meta.mainProgram to packages with a single binary 2024-03-19 03:14:51 +01:00
yaws treewide: add meta.mainProgram to packages with a single binary 2024-03-19 03:14:51 +01:00