- Issued:
- 2013-11-20
- Updated:
- 2013-11-20
RHBA-2013:1619 - haproxy bug fix and enhancement update
Synopsis
haproxy bug fix and enhancement update
Type/Severity
Bug Fix Advisory
Topic
Updated haproxy packages that fix several bugs and add various enhancements are now available for Red Hat Enterprise Linux 6.
Description
The haproxy packages provide a reliable, high-performance network load balancer for TCP and HTTP-based applications. It is particularly suited for web sites crawling under very high loads while needing persistence or Layer7 processing.
The haproxy packages have been upgraded to upstream version 1.4.24, which provides a number of bug fixes and enhancements over the previous version. (BZ#947987)
This update fixes the following bug:
- Previously, the setuid() and setgid() functions did not work properly. As a consequence, the HAProxy load balancer failed to drop supplementary groups correctly after attempting to drop root privileges. The behavior of the functions has been modified, and HAProxy now drops all supplementary groups as expected. (BZ#903303)
In addition, this update adds the following enhancement:
- With this update, support for TPROXY has been added to the haproxy packages. TPROXY simplifies management tasks of clients behind proxy firewalls. Also, transparent proxying makes the presence of the proxy invisible to the user. (BZ#921064)
Users of haproxy are advised to upgrade to these updated packages, which fix these bugs and add these enhancements.
Solution
Before applying this update, make sure all previously released errata relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/site/articles/11258
Affected Products
| Product | Version | Arch |
|---|---|---|
| Red Hat Enterprise Linux Load Balancer (for RHEL Server) | 6 | x86_64 |
| Red Hat Enterprise Linux Load Balancer (for RHEL Server) | 6 | i386 |
| Red Hat Enterprise Linux Load Balancer (for RHEL Server) from RHUI | 6 | x86_64 |
| Red Hat Enterprise Linux Load Balancer (for RHEL Server) from RHUI | 6 | i386 |
Updated Packages
- haproxy-1.4.24-2.el6.i686.rpm
- haproxy-debuginfo-1.4.24-2.el6.i686.rpm
- haproxy-1.4.24-2.el6.x86_64.rpm
- haproxy-debuginfo-1.4.24-2.el6.x86_64.rpm
- haproxy-1.4.24-2.el6.src.rpm
Fixes
- This content is not included.BZ - 903303
- This content is not included.BZ - 921064
- This content is not included.BZ - 947987
CVEs
(none)
References
(none)
Additional information
- The Red Hat security contact is This content is not included.secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
- Offline Security Data data is available for integration with other systems. See Offline Security Data API to get started.