diff options
| author | Loïc Hoguin <[email protected]> | 2025-09-12 15:11:23 +0200 |
|---|---|---|
| committer | Loïc Hoguin <[email protected]> | 2025-09-12 15:11:23 +0200 |
| commit | cc3090655518296200184df704a5410660d087a9 (patch) | |
| tree | 08ffccd61106eb7893fb71b1e3cbbf2de9b36d83 | |
| parent | 43c5aff8a4b969130ffe6b5963b5a0c8ff46620d (diff) | |
| download | ci.erlang.mk-cc3090655518296200184df704a5410660d087a9.tar.gz ci.erlang.mk-cc3090655518296200184df704a5410660d087a9.tar.bz2 ci.erlang.mk-cc3090655518296200184df704a5410660d087a9.zip | |
OTP-28.0.4
| -rw-r--r-- | early-plugins.mk | 4 | ||||
| -rw-r--r-- | release-notes/OTP-28.0.4.README.txt | 39 |
2 files changed, 41 insertions, 2 deletions
diff --git a/early-plugins.mk b/early-plugins.mk index d2c4fb3..2d73c66 100644 --- a/early-plugins.mk +++ b/early-plugins.mk @@ -22,7 +22,7 @@ OTP-24 := OTP-24.0.6 OTP-24.1.7 OTP-24.2.2 OTP-24.3.4.17 OTP-25 := OTP-25.0.4 OTP-25.1.2.1 OTP-25.2.3 OTP-25.3.2.21 OTP-26 := OTP-26.0.2 OTP-26.1.2 OTP-26.2.5.15 OTP-27 := OTP-27.0.1 OTP-27.1.3 OTP-27.2.4 OTP-27.3.4.3 -OTP-28 := OTP-28.0.3 +OTP-28 := OTP-28.0.4 OTP-18+ := $(OTP-18) $(OTP-19) $(OTP-20) $(OTP-21) $(OTP-22) $(OTP-23) $(OTP-24) $(OTP-25) $(OTP-26) $(OTP-27) $(OTP-28) OTP-19+ := $(OTP-19) $(OTP-20) $(OTP-21) $(OTP-22) $(OTP-23) $(OTP-24) $(OTP-25) $(OTP-26) $(OTP-27) $(OTP-28) @@ -129,7 +129,7 @@ OTP-26-DROPPED := OTP-26.0-rc3 \ OTP-27-DROPPED := OTP-27.0-rc1 OTP-27.0-rc2 \ OTP-27.1.2 OTP-27.2 OTP-27.2.1 OTP-27.2.2 OTP-27.2.3 OTP-27.3 OTP-27.3.1 OTP-27.3.2 OTP-27.3.3 OTP-27.3.4 OTP-27.3.4.1 OTP-27.3.4.2 OTP-28-DROPPED := OTP-28.0-rc1 OTP-28.0-rc2 OTP-28.0-rc3 OTP-28.0-rc4 \ - OTP-28.0 OTP-28.0.1 OTP-28.0.2 + OTP-28.0 OTP-28.0.1 OTP-28.0.2 OTP-28.0.3 OTP-DROPPED := $(OTP-18-DROPPED) $(OTP-19-DROPPED) $(OTP-20-DROPPED) \ $(OTP-21-DROPPED) $(OTP-22-DROPPED) $(OTP-23-DROPPED) $(OTP-24-DROPPED) \ diff --git a/release-notes/OTP-28.0.4.README.txt b/release-notes/OTP-28.0.4.README.txt new file mode 100644 index 0000000..0b05766 --- /dev/null +++ b/release-notes/OTP-28.0.4.README.txt @@ -0,0 +1,39 @@ +Patch Package: OTP 28.0.4 +Git Tag: OTP-28.0.4 +Date: 2025-09-11 +Trouble Report Id: OTP-19729 +Seq num: CVE-2016-1000107, GH-3392, PR-6223 +System: OTP +Release: 28 +Application: inets-9.4.1 +Predecessor: OTP 28.0.3 + +Check out the git tag OTP-28.0.4, and build a full OTP system including +documentation. Apply one or more applications from this build as patches to your +installation using the 'otp_patch_apply' tool. For information on install +requirements, see descriptions for each application version below. + +# inets-9.4.1 + +The inets-9.4.1 application can be applied independently of other applications +on a full OTP 28 installation. + +## Fixed Bugs and Malfunctions + +- Fixed a bug where a request sent to httpd server which is using CGI script to + generate a response, would pollute server's environment variable - + `HTTP_PROXY` for that request. This bug is also known as httpoxy. More + information: CVE-2016-1000107 + + Own Id: OTP-19729 + Related Id(s): GH-3392, PR-6223, CVE-2016-1000107 + +> #### Full runtime dependencies of inets-9.4.1 +> +> erts-14.0, kernel-9.0, mnesia-4.12, public_key-1.13, runtime_tools-1.8.14, +> ssl-9.0, stdlib-5.0, stdlib-6.0 + +# Thanks to + +Marcel Lanz + |