libhttp-daemon-perl 6.13-1ubuntu0.1 source package in Ubuntu

Changelog

libhttp-daemon-perl (6.13-1ubuntu0.1) jammy-security; urgency=medium

  * SECURITY UPDATE: HTTP Request Smuggling issue
    - debian/patches/CVE-2022-31081-pre1.patch: rename variables in
      lib/HTTP/Daemon.pm.
    - debian/patches/CVE-2022-31081-1.patch: fix Content-Length issues in
      lib/HTTP/Daemon.pm.
    - debian/patches/CVE-2022-31081-2.patch: include reason in response
      body content in lib/HTTP/Daemon.pm.
    - debian/patches/CVE-2022-31081-3.patch: add new test to
      t/content_length.t.
    - CVE-2022-31081

 -- Marc Deslauriers <email address hidden>  Wed, 13 Jul 2022 07:47:06 -0400

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Jammy
Original maintainer:
Ubuntu Developers
Architectures:
all
Section:
perl
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Jammy updates main perl
Jammy security main perl

Builds

Jammy: [FULLYBUILT] amd64

Downloads

File Size SHA-256 Checksum
libhttp-daemon-perl_6.13.orig.tar.gz 45.7 KiB d184d1f3e51e690d60e4b00195aa69f679169c858f2aab419997c70892014516
libhttp-daemon-perl_6.13-1ubuntu0.1.debian.tar.xz 7.1 KiB 7ac6ecaa82884696aac6ff070f1dae2168bd188b3f0990cf774dba8cb266377f
libhttp-daemon-perl_6.13-1ubuntu0.1.dsc 2.5 KiB 7ec3ad55252c398e77028064f269e154b213535e62a3665b94378a1fb4a3f5ce

View changes file

Binary packages built by this source

libhttp-daemon-perl: simple http server class

 Instances of the HTTP::Daemon class are HTTP/1.1 servers that listen on a
 socket for incoming requests. The HTTP::Daemon is a subclass of
 IO::Socket::IP, so you can perform socket operations directly on it too.
 .
 The accept() method will return when a connection from a client is available.
 The returned value will be an HTTP::Daemon::ClientConn object which is
 another IO::Socket::IP subclass. Calling the get_request() method on this
 object will read data from the client and return an HTTP::Request object. The
 ClientConn object also provide methods to send back various responses.
 .
 This HTTP daemon does not fork(2) for you. Your application, i.e. the user of
 the HTTP::Daemon is responsible for forking if that is desirable. Also note
 that the user is responsible for generating responses that conform to the
 HTTP/1.1 protocol.