[ANNOUNCE] Apache Traffic Server is vulnerable to request smuggling and DoS

Description: Apache Traffic Server is vulnerable to request smuggling and DoS CVE: CVE-2023-38522 - Incomplete field name check allows request smuggling CVE-2024-35161 - Incomplete check for chunked trailer section allows request smuggling CVE-2024-35296 - Invalid Accept-Encoding can force forward

[ANNOUNCE] Apache Traffic Server 9.2.5 and 8.1.11 are released

Apache Traffic Server 9.2.5 and 8.1.11 are released The Apache Software Foundation and the Apache Traffic Server (ATS) Project are pleased to announce the release of Apache Traffic Server 9.2.5 and 8.1.11! ATS is a high performance, scalable HTTP Intermediary and proxy cache. It is used by se

Re: [VOTE] ACL filter action names for 10.x

+1 renaming to avoid potential user astonishment Sent with Proton Mail secure email. On Monday, July 22nd, 2024 at 12:44 PM, Brian Neradt wrote: > Hi dev@trafficserver.apache.org, > > We're processing through ACL filter action names for 10.x. For context, for > 9.x and before, these are ho