Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

2.0.22 backports #2547

Merged
merged 10 commits into from
Jul 25, 2023
Merged

2.0.22 backports #2547

merged 10 commits into from
Jul 25, 2023

Conversation

xrmx
Copy link
Collaborator

@xrmx xrmx commented Jul 25, 2023

No description provided.

YoungZiyi and others added 10 commits July 25, 2023 15:40
@YoungZiyi @xrmx
fix typo
93f879a
@niol @xrmx
fix use after free when DEBUG
130e727
@covener @xrmx
apache2/mod_proxy_uwsgi: stricter backend HTTP response parsing/valid…
acb0353 
…ation

HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi.
Special characters in the origin response header can truncate/split the response forwarded to the client.

Fix unbit#2538

origin: https://github.com/apache/httpd/commit/d753ea76b5972a85349b68c31b59d04c60014f2d.patch
bug-cve: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27522
@xrmx
ci: bump compile test distro to ubuntu 20.04
dab001c 
Since 18.04 is gone.
@xrmx
ci: bump test github workflow to ubuntu 20.04
5ba8388 
Since ubuntu 18.04 is gone. While at it remove deadsnakes install on
rake job.
@Lalufu @xrmx
plugins/{rack,ruby}: handle recent ruby versions
6e5ec57 
The rack/ruby plugin code references rb_obj_taint(), which has been
removed from Ruby 3.2. The function has been deprecated for a long time,
and hasn't been doing anything useful since Ruby 2.7.

Fix unbit#2532
@xrmx
plugins/rack: fix compilation with ruby 3.1
11f6fcc
@xrmx
buildconf: drop v8 from travis profile
d90f231 
It does not build with recent v8 so disable it.
@xrmx
buildconf: drop alarm_xmpp from travis profile
a1342e0 
Remove plugin that does not build anymore.
@xrmx
plugins/jvm: add more paths to build on debian with openjdk-11 out of…
c46262c 
… the box
@xrmx xrmx merged commit aba6903 into unbit:uwsgi-2.0 Jul 25, 2023
23 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@xrmx @YoungZiyi @niol @covener @Lalufu