UbuntuUpdates.org

Package "keepalived"

Name: keepalived

Description:

Failover and monitoring daemon for LVS clusters
Latest version: 1:1.3.9-1ubuntu0.18.04.3
Release: bionic (18.04)
Level: updates
Repository: main
Homepage: http://keepalived.org

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "keepalived"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "keepalived" in Bionic

Repository Area Version
base main 1:1.3.9-1build1
security main 1:1.3.9-1ubuntu0.18.04.3

Changelog

Version: 1:1.3.9-1ubuntu0.18.04.3 2021-12-13 20:06:54 UTC

  keepalived (1:1.3.9-1ubuntu0.18.04.3) bionic-security; urgency=medium

  * SECURITY UPDATE: Access-control bypass
    - debian/patches/CVE-2021-44225.patch: fix policy to not
      be overly broad in dbus/org.keepalived.Vrrp1.conf.
    - CVE-2021-44225

 -- Leonidas Da Silva Barbosa <email address hidden> Thu, 02 Dec 2021 10:30:45 -0300
Source diff to previous version
CVE-2021-44225 In Keepalived through 2.2.4, the D-Bus policy does not sufficiently restrict the message destination, allowing any user to inspect and manipulate any

Version: 1:1.3.9-1ubuntu0.18.04.2 2019-05-28 15:06:50 UTC

  keepalived (1:1.3.9-1ubuntu0.18.04.2) bionic-security; urgency=medium

  * SECURITY UPDATE: heap-based overflow in HTTP status codes parsing
    - debian/patches/CVE-2018-19115.patch: refactor parsing in lib/html.c.
    - CVE-2018-19115

 -- Marc Deslauriers <email address hidden> Thu, 14 Feb 2019 10:58:52 -0500
Source diff to previous version
CVE-2018-19115 keepalived before 2.0.7 has a heap-based buffer overflow when parsing HTTP status codes resulting in DoS or possibly unspecified other impact, becaus

Version: 1:1.3.9-1ubuntu0.18.04.1 2018-07-30 18:06:51 UTC

  keepalived (1:1.3.9-1ubuntu0.18.04.1) bionic; urgency=medium

  * d/p/fix-removing-left-over-addresses-if-keepalived-abort.patch:
    Cherry-picked from upstream to ensure left-over VIPs and eVIPs are
    properly removed on restart if keepalived terminates abonormally. This
    fix is from the upstream 1.4.0 release (LP: #1744062).

 -- Corey Bryant <email address hidden> Tue, 03 Jul 2018 10:40:59 -0400


About   -   Send Feedback to @ubuntu_updates