[ubuntu/resolute-proposed] haproxy 3.2.9-1ubuntu2 (Accepted)

Marc Deslauriers marc.deslauriers at ubuntu.com
Tue Feb 24 18:09:15 UTC 2026 

haproxy (3.2.9-1ubuntu2) resolute; urgency=medium

  * SECURITY UPDATE: crash in parsing frame type
    - debian/patches/CVE-2026-26080.patch: check for return value in
      src/quic_frame.c.
    - CVE-2026-26080
  * SECURITY UPDATE: crash via INITIAL packet for the NEW_TOKEN format
    - debian/patches/CVE-2026-26081.patch: reject invalid token
      in src/quic_token.c.
    - CVE-2026-26081
  * SECURITY UPDATE: crash in HTTP/3 CONNECT
    - debian/patches/quic-fix-1.patch: revert BUG_ON if sending on locally
      closed QCS in include/haproxy/qmux_http.h, src/mux_quic.c,
      src/qmux_http.c.
    - debian/patches/quic-fix-2.patch: reject frontend CONNECT as currently
      not implemented in src/h3.c.
    - CVE number pending

Date: Tue, 24 Feb 2026 12:34:52 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/haproxy/3.2.9-1ubuntu2
-------------- next part --------------
Format: 1.8
Date: Tue, 24 Feb 2026 12:34:52 -0500
Source: haproxy
Built-For-Profiles: noudeb
Architecture: source
Version: 3.2.9-1ubuntu2
Distribution: resolute
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Changes:
 haproxy (3.2.9-1ubuntu2) resolute; urgency=medium
 .
   * SECURITY UPDATE: crash in parsing frame type
     - debian/patches/CVE-2026-26080.patch: check for return value in
       src/quic_frame.c.
     - CVE-2026-26080
   * SECURITY UPDATE: crash via INITIAL packet for the NEW_TOKEN format
     - debian/patches/CVE-2026-26081.patch: reject invalid token
       in src/quic_token.c.
     - CVE-2026-26081
   * SECURITY UPDATE: crash in HTTP/3 CONNECT
     - debian/patches/quic-fix-1.patch: revert BUG_ON if sending on locally
       closed QCS in include/haproxy/qmux_http.h, src/mux_quic.c,
       src/qmux_http.c.
     - debian/patches/quic-fix-2.patch: reject frontend CONNECT as currently
       not implemented in src/h3.c.
     - CVE number pending
Checksums-Sha1:
 0b7c86b57a3a671e793460a88390e58e63c34790 2483 haproxy_3.2.9-1ubuntu2.dsc
 d26f0111af151529fa09c8931de00d016501e835 89376 haproxy_3.2.9-1ubuntu2.debian.tar.xz
 1db7b4992c18dfb9f49909722cf3f2e2650d7311 8113 haproxy_3.2.9-1ubuntu2_source.buildinfo
Checksums-Sha256:
 9f7afa215fd99478f0aecccd6ab204b027016c73ae9007b69a6590192e75171e 2483 haproxy_3.2.9-1ubuntu2.dsc
 aa392b14df0379941af17aa3becf5065c99b6eedbb7e077c767f181294abfc97 89376 haproxy_3.2.9-1ubuntu2.debian.tar.xz
 6ce333b2837ebb6a4f3e4cdd9d6e70ec2acde8bbaf7bbfd1ace6e7ffef409404 8113 haproxy_3.2.9-1ubuntu2_source.buildinfo
Files:
 d8770eb6aee529db895c9f0317d2f741 2483 net optional haproxy_3.2.9-1ubuntu2.dsc
 b4352461c763afee1a82df5be88c49a7 89376 net optional haproxy_3.2.9-1ubuntu2.debian.tar.xz
 5f009d6e2940241c5b565ca6e0b19f1f 8113 net optional haproxy_3.2.9-1ubuntu2_source.buildinfo
Original-Maintainer: Debian HAProxy Maintainers <team+haproxy at tracker.debian.org>

More information about the Resolute-changes mailing list