<div class="container">
<h1>Feature update for haproxy</h1>
<table class="table table-striped table-bordered">
<tbody>
<tr>
<th>Announcement ID:</th>
<td>SUSE-FU-2023:2118-1</td>
</tr>
<tr>
<th>Rating:</th>
<td>moderate</td>
</tr>
<tr>
<th>References:</th>
<td>
<ul>
</ul>
</td>
</tr>
<tr>
<th>Affected Products:</th>
<td>
<ul class="list-group">
<li class="list-group-item">openSUSE Leap 15.4</li>
<li class="list-group-item">openSUSE Leap Micro 5.3</li>
<li class="list-group-item">SUSE Linux Enterprise High Availability Extension 15 SP4</li>
<li class="list-group-item">SUSE Linux Enterprise High Performance Computing 15 SP4</li>
<li class="list-group-item">SUSE Linux Enterprise Micro 5.3</li>
<li class="list-group-item">SUSE Linux Enterprise Micro 5.4</li>
<li class="list-group-item">SUSE Linux Enterprise Micro for Rancher 5.3</li>
<li class="list-group-item">SUSE Linux Enterprise Micro for Rancher 5.4</li>
<li class="list-group-item">SUSE Linux Enterprise Server 15 SP4</li>
<li class="list-group-item">SUSE Linux Enterprise Server for SAP Applications 15 SP4</li>
<li class="list-group-item">SUSE Manager Proxy 4.3</li>
<li class="list-group-item">SUSE Manager Retail Branch Server 4.3</li>
<li class="list-group-item">SUSE Manager Server 4.3</li>
</ul>
</td>
</tr>
</tbody>
</table>
<p>An update that contains one feature can now be installed.</p>
<h2>Description:</h2>
<p>This update for haproxy fixes the following issues:</p>
<p>Update to version 2.4.22. (jsc#PED-3821):</p>
<ul>
<li>BUG/CRITICAL: http: properly reject empty http header field names</li>
<li>CI: github: don't warn on deprecated openssl functions on windows</li>
<li>BUG/MEDIUM: stconn: Schedule a shutw on shutr if data must be sent first</li>
<li>DOC: proxy-protocol: fix wrong byte in provided example</li>
<li>DOC: config: 'http-send-name-header' option may be used in default section</li>
<li>DOC: config: fix option spop-check proxy compatibility</li>
<li>BUG/MEDIUM: cache: use the correct time reference when comparing dates</li>
<li>BUG/MEDIUM: stick-table: do not leave entries in end of window during purge</li>
<li>BUG/MINOR: ssl/crt-list: warn when a line is malformated</li>
<li>BUG/MEDIUM: ssl: wrong eviction from the session cache tree</li>
<li>BUG/MINOR: fcgi-app: prevent 'use-fcgi-app' in default section</li>
<li>BUG/MINOR: sink: free the forwarding task on exit</li>
<li>BUILD: hpack: include global.h for the trash that is needed in debug mode</li>
<li>BUG/MINOR: mux-h2: add missing traces on failed headers decoding</li>
<li>BUG/MINOR: listener: close tiny race between resume_listener() and stopping</li>
<li>DOC: config: fix "Address formats" chapter syntax</li>
<li>BUG/MINOR: mux-fcgi: Correctly set pathinfo</li>
<li>DOC: config: fix aliases for protocol prefixes "udp4@" and "udp6@"</li>
<li>DOC: config: fix wrong section number for "protocol prefixes"</li>
<li>BUG/MINOR: listeners: fix suspend/resume of inherited FDs</li>
<li>BUG/MINOR: http-ana: make set-status also update txn->status</li>
<li>BUG/MINOR: http-fetch: Don't block HTTP sample fetch eval in HTTP_MSG_ERROR state</li>
<li>BUG/MINOR: http-ana: Report SF_FINST_R flag on error waiting the request body</li>
<li>BUG/MINOR: promex: Don't forget to consume the request on error</li>
<li>BUG/MINOR: resolvers: Wait the resolution execution for a do_resolv action</li>
<li>BUG/MINOR: h1-htx: Remove flags about protocol upgrade on non-101 responses</li>
<li>CLEANUP: htx: fix a typo in an error message of http_str_to_htx</li>
<li>BUG/MINOR: http: Memory leak of http redirect rules' format string</li>
<li>REGTEST: fix the race conditions in hmac.vtc</li>
<li>REGTEST: fix the race conditions in digest.vtc</li>
<li>REGTEST: fix the race conditions in json_query.vtc</li>
<li>BUG/MAJOR: buf: Fix copy of wrapping output data when a buffer is realigned</li>
<li>BUG/MINOR: http-fetch: Only fill txn status during prefetch if not already set</li>
<li>BUILD: makefile: sort the features list</li>
<li>BUILD: makefile: build the features list dynamically</li>
<li>BUG/MINOR: pool/stats: Use ullong to report total pool usage in bytes in stats</li>
<li>BUG/MEDIUM: mux-h2: Refuse interim responses with end-stream flag set</li>
<li>BUG/MINOR: ssl: Fix memory leak of find_chain in ssl_sock_load_cert_chain</li>
<li>LICENSE: wurfl: clarify the dummy library license.</li>
<li>BUG/MEDIUM: resolvers: Use tick_first() to update the resolvers task timeout</li>
<li>REGTESTS: startup: check maxconn computation</li>
<li>REGTESTS: fix the race conditions in iff.vtc</li>
<li>BUG/MAJOR: fcgi: Fix uninitialized reserved bytes</li>
<li>DOC: promex: Add missing backend metrics</li>
<li>MINOR: promex: introduce haproxy_backend_agg_check_status</li>
<li>BUG/MINOR: promex: create haproxy_backend_agg_server_status</li>
<li>BUG/MEDIUM: mworker: fix segv in early failure of mworker mode with peers</li>
<li>BUG/MINOR: ssl: Fix potential overflow</li>
<li>BUG/MEDIUM: ssl: Verify error codes can exceed 63</li>
<li>BUG/MINOR: resolvers: Don't wait periodic resolution on healthcheck failure</li>
<li>BUILD: peers: peers-t.h depends on stick-table-t.h</li>
<li>CI: github: change "ubuntu-latest" to "ubuntu-20.04"</li>
<li>BUG/MEDIIM: stconn: Flush output data before forwarding close to write side</li>
<li>BUG/MINOR: http-htx: Don't consider an URI as normalized after a set-uri action</li>
<li>[RELEASE] Released version 2.4.20</li>
<li>Revert "CI: determine actual OpenSSL version dynamically"</li>
<li>Revert "CI: switch to the "latest" LibreSSL"</li>
<li>SCRIPTS: announce-release: add a link to the data plane API</li>
<li>DOC: config: clarify the -m dir and -m dom pattern matching methods</li>
<li>DOC: config: clarify the fact that "retries" is not just for connections</li>
<li>DOC: config: explain how default matching method for ACL works</li>
<li>DOC: config: mention that a single monitor-uri rule is supported</li>
<li>DOC: config: clarify the fact that SNI should not be used in HTTP scenarios</li>
<li>DOC: config: provide some configuration hints for "http-reuse"</li>
<li>Revert "BUG/MINOR: http-htx: Don't consider an URI as normalized after a set-uri action"</li>
<li>BUG/MINOR: mux-h1: Fix handling of 408-Request-Time-Out</li>
<li>BUILD: http-htx: Silent build error about a possible NULL start-line</li>
<li>BUG/MINOR: http-htx: Don't consider an URI as normalized after a set-uri action</li>
<li>BUG/MINOR: log: fix parse_log_message rfc5424 size check</li>
<li>BUG/MINOR: cfgparse-listen: fix ebpt_next_dup pointer dereference on proxy "from" inheritance</li>
<li>BUILD: listener: fix build warning on global_listener_rwlock without threads</li>
<li>BUG/MINOR: server/idle: at least use atomic stores when updating max_used_conns</li>
<li>BUILD: peers: Remove unused variables</li>
<li>BUG/MEDIUM: peers: messages about unkown tables not correctly ignored</li>
<li>BUG/MINOR: ssl: don't initialize the keylog callback when not required</li>
<li>BUG/MINOR: http_ana/txn: don't re-initialize txn and req var lists</li>
<li>BUG/MEDIUM: listener: Fix race condition when updating the global mngmt task</li>
<li>BUG/MINOR: pool/cli: use ullong to report total pool usage in bytes</li>
<li>BUG/MEDIUM: ring: fix creation of server in uninitialized ring</li>
<li>DOC: config: fix alphabetical ordering of global section</li>
<li>REG-TESTS: cache: Remove T-E header for 304-Not-Modified responses</li>
<li>BUG/MINOR: mux-h1: Do not send a last null chunk on body-less answers</li>
<li>BUG/MEDIUM: mux-fcgi: Avoid value length overflow when it doesn't fit at once</li>
<li>BUG/MINOR: mux-fcgi: Be sure to send empty STDING record in case of zero-copy</li>
<li>BUG/MINOR: resolvers: Set port before IP address when processing SRV records</li>
<li>BUG/MINOR: http-htx: Fix error handling during parsing http replies</li>
<li>BUG/MEDIUM: wdt/clock: properly handle early task hangs</li>
<li>CI: emit the compiler's version in the build reports</li>
<li>CI: switch to the "latest" LibreSSL</li>
<li>BUG/MINOR: ssl: ocsp structure not freed properly in case of error</li>
<li>BUG/MINOR: ssl: Memory leak of AUTHORITY_KEYID struct when loading issuer</li>
<li>CI: add monthly gcc cross compile jobs</li>
<li>BUG/MINOR: log: fixing bug in tcp syslog_io_handler Octet-Counting</li>
<li>BUG/MEDIUM: stick-table: fix a race condition when updating the expiration task</li>
<li>BUG/MAJOR: stick-table: don't process store-response rules for applets</li>
<li>DOC: management: add forgotten "show startup-logs"</li>
<li>BUG/MINOR: stick-table: Use server_id instead of std_t_sint in process_store_rules()</li>
<li>CI: SSL: temporarily stick to LibreSSL=3.5.3</li>
<li>CI: SSL: use proper version generating when "latest" semantic is used</li>
<li>BUG/MINOR: sink: Set default connect/server timeout for implicit ring buffers</li>
<li>BUG/MINOR: sink: Only use backend capability for the sink proxies</li>
<li>BUG/MEDIUM: compression: handle rewrite errors when updating response headers</li>
<li>BUG/MINOR: ring: Properly parse connect timeout</li>
<li>BUG/MINOR: log: Preserve message facility when the log target is a ring buffer</li>
<li>CI: Replace the deprecated <code>::set-output</code> command by writing to $GITHUB_OUTPUT in workflow definition</li>
<li>CI: Replace the deprecated <code>::set-output</code> command by writing to $GITHUB_OUTPUT in matrix.py</li>
<li>BUG/MINOR: server: make sure "show servers state" hides private bits</li>
<li>BUG/MAJOR: stick-tables: do not try to index a server name for applets</li>
<li>DOC: configuration: missing 'if' in tcp-request content example</li>
<li>BUG/MINOR: backend: only enforce turn-around state when not redispatching</li>
<li>BUG/MINOR: smtpchk: SMTP Service check should gracefully close SMTP transaction</li>
<li>MINOR: smtpchk: Update expect rule to fully match replies to EHLO commands</li>
<li>BUG/MINOR: mux-h1: Account consumed output data on synchronous connection error</li>
<li>BUILD: http_fetch: silence an uninitiialized warning with gcc-4/5/6 at -Os</li>
<li>BUG/MINOR: http-fetch: Update method after a prefetch in smp_fetch_meth()</li>
<li>BUILD: h1: silence an initiialized warning with gcc-4.7 and -Os</li>
<li>BUG/MEDIUM: lua: handle stick table implicit arguments right.</li>
<li>BUG/MEDIUM: lua: Don't crash in hlua_lua2arg_check on failure</li>
<li>DOC: config: Fix pgsql-check documentation to make user param mandatory</li>
<li>BUG/MINOR: checks: update pgsql regex on auth packet</li>
<li>[RELEASE] Released version 2.4.19</li>
<li>BUG/MEDIUM: resolvers: Remove aborted resolutions from query_ids tree</li>
<li>REGTESTS: 4be_1srv_smtpchk_httpchk_layer47errors: Return valid SMTP replies</li>
<li>BUG/MINOR: log: improper behavior when escaping log data</li>
<li>SCRIPTS: announce-release: update some URLs to https</li>
<li>BUILD: fd: fix a build warning on the DWCAS</li>
<li>BUG/MEDIUM: captures: free() an error capture out of the proxy lock</li>
<li>DOC: fix TOC in starter guide for subsection 3.3.8. Statistics</li>
<li>REGTESTS: ssl/log: test the log-forward with SSL</li>
<li>BUG/MEDIUM: sink: bad init sequence on tcp sink from a ring.</li>
<li>REGTESTS: log: test the log-forward feature</li>
<li>REGTESTS: healthcheckmail: Relax matching on the healthcheck log message</li>
<li>BUG/MINOR: stats: fixing stat shows disabled frontend status as 'OPEN'</li>
<li>MINOR: listener: small API change</li>
<li>BUG/MEDIUM: proxy: ensure pause_proxy() and resume_proxy() own PROXY_LOCK</li>
<li>CI: cirrus-ci: bump FreeBSD image to 13-1</li>
<li>BUG/MINOR: signals/poller: ensure wakeup from signals</li>
<li>BUG/MINOR: signals/poller: set the poller timeout to 0 when there are signals</li>
<li>BUG/MINOR: task: always reset a new tasklet's call date</li>
<li>BUG/MINOR: h1: Support headers case adjustment for TCP proxies</li>
<li>BUILD: makefile: enable crypt(3) for NetBSD</li>
<li>BUG/MINOR: regex: Properly handle PCRE2 lib compiled without JIT support</li>
<li>BUG/MINOR: mux-fcgi: fix the "show fd" dest buffer for the subscriber</li>
<li>BUG/MINOR: mux-h1: fix the "show fd" dest buffer for the subscriber</li>
<li>BUG/MINOR: mux-h2: fix the "show fd" dest buffer for the subscriber</li>
<li>BUG/MEDIUM: mux-h1: always use RST to kill idle connections in pools</li>
<li>REGTESTS: http_request_buffer: Add a barrier to not mix up log messages</li>
<li>BUG/MEDIUM: mux-h1: do not refrain from signaling errors after end of input</li>
<li>BUG/MINOR: tcpcheck: Disable QUICKACK for default tcp-check (with no rule)</li>
<li>BUG/MINOR: hlua: Rely on CF_EOI to detect end of message in HTTP applets</li>
<li>BUG/MEDIUM: peers: Don't start resync on reload if local peer is not up-to-date</li>
<li>BUG/MEDIUM: peers: Don't use resync timer when local resync is in progress</li>
<li>BUG/MEDIUM: peers: Add connect and server timeut to peers proxy</li>
<li>BUG/MEDIUM: spoe: Properly update streams waiting for a ACK in async mode</li>
<li>DOC: configuration: do-resolve doesn't work with a port in the string</li>
<li>REGTESTS: Fix prometheus script to perform HTTP health-checks</li>
<li>BUG/MINOR: tcpcheck: Disable QUICKACK only if data should be sent after connect</li>
<li>BUG/MINOR: resolvers: return the correct value in resolvers_finalize_config()</li>
<li>BUG/MAJOR: mworker: fix infinite loop on master with no proxies.</li>
<li>BUG/MAJOR: log-forward: Fix log-forward proxies not fully initialized</li>
<li>BUG/MEDIUM: mux-h2: do not fiddle with ->dsi to indicate demux is idle</li>
<li>BUG/MEDIUM: http-ana: fix crash or wrong header deletion by http-restrict-req-hdr-names</li>
<li>BUILD: http: silence an uninitialized warning affecting gcc-5</li>
<li>BUG/MEDIUM: ring: fix too lax 'size' parser</li>
<li>BUILD: debug: silence warning on gcc-5</li>
<li>BUG/MEDIUM: task: relax one thread consistency check in task_unlink_wq()</li>
<li>BUG/MEDIUM: poller: use fd_delete() to release the poller pipes</li>
<li>BUILD: cfgparse: always defined _GNU_SOURCE for sched.h and crypt.h</li>
<li>BUG/MINOR: sink: fix a race condition between the writer and the reader</li>
<li>BUG/MINOR: ring/cli: fix a race condition between the writer and the reader</li>
<li>BUG/MEDIUM: proxy: Perform a custom copy for default server settings</li>
<li>REORG: server: Export srv_settings_cpy() function</li>
<li>MINOR: server: Constify source server to copy its settings</li>
<li>BUG/MEDIUM: dns: Properly initialize new DNS session</li>
<li>BUG/MINOR: peers: Use right channel flag to consider the peer as connected</li>
<li>BUG/MEDIUM: peers: limit reconnect attempts of the old process on reload</li>
<li>MINOR: peers: Use a dedicated reconnect timeout when stopping the local peer</li>
<li>BUG/MEDIUM: pattern: only visit equivalent nodes when skipping versions</li>
<li>MINOR: ebtree: add ebmb_lookup_shorter() to pursue lookups</li>
<li>MINOR: http-htx: Use new HTTP functions for the scheme based normalization</li>
<li>BUG/MEDIUM: h1: Improve authority validation for CONNCET request</li>
<li>MINOR: http: Add function to detect default port</li>
<li>MINOR: http: Add function to get port part of a host</li>
<li>BUG/MEDIUM: mworker: use default maxconn in wait mode</li>
<li>[RELEASE] Released version 2.4.18</li>
<li>BUG/MINOR: sockpair: wrong return value for fd_send_uxst()</li>
<li>BUG/MINOR: backend: Fallback on RR algo if balance on source is impossible</li>
<li>BUILD: add detection for unsupported compiler models</li>
<li>BUG/MEDIUM: mworker: proc_self incorrectly set crashes upon reload</li>
<li>REGTESTS: Fix some scripts to be compatible with 2.4 and prior</li>
<li>BUG/MINOR: tools: fix statistical_prng_range()'s output range</li>
<li>BUG/MEDIUM: tools: avoid calling dlsym() in static builds (try 2)</li>
<li>BUILD: makefile: Fix install(1) handling for OpenBSD/NetBSD/Solaris/AIX</li>
<li>BUG/MEDIUM: tools: avoid calling dlsym() in static builds</li>
<li>MEDIUM: mworker: set the iocb of the socketpair without using fd_insert()</li>
<li>BUG/MEDIUM: mux-h1: Handle connection error after a synchronous send</li>
<li>BUG/MEDIUM: http-ana: Don't wait to have an empty buf to switch in TUNNEL state</li>
<li>BUG/MINOR: mux-h1: Be sure to commit htx changes in the demux buffer</li>
<li>REGTEESTS: filters: Fix CONNECT request in random-forwarding script</li>
<li>BUG/MEDIUM: http-fetch: Don't fetch the method if there is no stream</li>
<li>BUG/MINOR: http-htx: Fix scheme based normalization for URIs wih userinfo</li>
<li>BUG/MINOR: peers: fix possible NULL dereferences at config parsing</li>
<li>BUG/MINOR: http-act: Properly generate 103 responses when several rules are used</li>
<li>BUG/MINOR: http-check: Preserve headers if not redefined by an implicit rule</li>
<li>BUG/MINOR: peers/config: always fill the bind_conf's argument</li>
<li>MINOR: fd: Add BUG_ON checks on fd_insert()</li>
<li>CI: re-enable gcc asan builds</li>
<li>BUILD: Makefile: Add Lua 5.4 autodetect</li>
<li>BUG/MEDIUM: ssl/fd: unexpected fd close using async engine</li>
<li>MINOR: fd: add a new FD_DISOWN flag to prevent from closing a deleted FD</li>
<li>BUG/MINOR: http-fetch: Use integer value when possible in "method" sample fetch</li>
<li>BUG/MINOR: http-ana: Set method to HTTP_METH_OTHER when an HTTP txn is created</li>
<li>BUG/MINOR: ssl: Do not look for key in extra files if already in pem</li>
<li>MEDIUM: mux-h2: try to coalesce outgoing WINDOW_UPDATE frames</li>
<li>BUG/MEDIUM: ssl/cli: crash when crt inserted into a crt-list</li>
<li>BUG/MINOR: tcp-rules: Make action call final on read error and delay expiration</li>
<li>BUG/MINOR: cli/stats: add missing trailing LF after "show info json"</li>
<li>BUG/MINOR: server: do not enable DNS resolution on disabled proxies</li>
<li>BUG/MINOR: cli/stats: add missing trailing LF after JSON outputs</li>
<li>REGTESTS: healthcheckmail: Relax health-check failure condition</li>
<li>REGTESTS: healthcheckmail: Update the test to be functionnal again</li>
<li>BUG/MINOR: checks: Properly handle email alerts in trace messages</li>
<li>BUG/MINOR: trace: Test server existence for health-checks to get proxy</li>
<li>BUG/MEDIUM: mailers: Set the object type for check attached to an email alert</li>
<li>BUILD: compiler: implement unreachable for older compilers too</li>
<li>REGTESTS: restrict_req_hdr_names: Extend supported versions</li>
<li>REGTESTS: http_abortonclose: Extend supported versions</li>
<li>BUG/MINOR: ssl_ckch: Fix possible uninitialized value in show_cert I/O handler</li>
<li>BUG/MINOR: ssl_ckch: Dump cert transaction only once if show command yield</li>
<li>REGTESTS: http_request_buffer: Increase client timeout to wait "slow" clients</li>
<li>REGTESTS: abortonclose: Add a barrier to not mix up log messages</li>
<li>MEDIUM: http-ana: Always report rewrite failures as PRXCOND in logs</li>
<li>BUG/MEDIUM: ssl/crt-list: Rework 'add ssl crt-list' to handle full buffer cases</li>
<li>BUG/MEDIUM: ssl_ckch: Rework 'commit ssl cert' to handle full buffer cases</li>
<li>BUG/MINOR: ssl_ckch: Don't duplicate path when replacing a cert entry</li>
<li>BUG/MEDIUM: ssl_ckch: Don't delete a cert entry if it is being modified</li>
<li>BUG/MINOR: ssl_ckch: Free error msg if commit changes on a cert entry fails</li>
<li>DOC: intro: adjust the numbering of paragrams to keep the output ordered</li>
<li>DOC: peers: fix port number and addresses on new peers section format</li>
<li>DOC: peers: clarify when entry expiration date is renewed.</li>
<li>DOC: peers: indicate that some server settings are not usable</li>
<li>SCRIPTS: make publish-release try to launch make-releases-json</li>
<li>SCRIPTS: add make-releases-json to recreate a releases.json file in download dirs</li>
<li>REGTESTS: Do not use REQUIRE_VERSION for HAProxy 2.5+ (2)</li>
<li>BUG/MEDIUM: sample: Fix adjusting size in word converter</li>
<li>BUG/MEDIUM: peers: prevent unitialized multiple listeners on peers section</li>
<li>BUG/MEDIUM: peers: fix segfault using multiple bind on peers sections</li>
<li>BUG/MEDIUM: resolvers: Don't defer resolutions release in deinit function</li>
<li>BUG/MEDIUM: http: Properly reject non-HTTP/1.x protocols</li>
<li>BUG/MEDIUM: tools: Fix <code>inet_ntop</code> usage in sa2str</li>
<li>CI: determine actual OpenSSL version dynamically</li>
<li>BUILD/MINOR: cpuset fix build for FreeBSD 13.1</li>
<li>BUG/MINOR: peers: fix error reporting of "bind" lines</li>
<li>BUG/MINOR: cfgparse: abort earlier in case of allocation error</li>
<li>BUG/MINOR: check: Reinit the buffer wait list at the end of a check</li>
<li>BUG/MEDIUM: config: Reset outline buffer size on realloc error in readcfgfile()</li>
<li>REGTESTS: abortonclose: Fix some race conditions</li>
<li>BUG/MINOR: ssl: Fix crash when no private key is found in pem</li>
<li>MINOR: tools: add get_exec_path implementation for solaris based systems.</li>
<li>BUILD: fix build warning on solaris based systems with __maybe_unused.</li>
<li>MEDIUM: http-ana: Add a proxy option to restrict chars in request header names</li>
<li>CI: determine actual LibreSSL version dynamically</li>
<li>[RELEASE] Released version 2.4.17</li>
<li>CLEANUP: mux-h1: Fix comments and error messages for global options</li>
<li>BUG/MEDIUM: wdt: don't trigger the watchdog when p is unitialized</li>
<li>BUG/MINOR: conn_stream: do not confirm a connection from the frontend path</li>
<li>BUG/MINOR: server: Make SRV_STATE_LINE_MAXLEN value from 512 to 2kB (2000 bytes).</li>
<li>DOC: install: update gcc version requirements</li>
<li>BUG/MEDIUM: ssl: fix the gcc-12 broken fix :-(</li>
<li>BUILD: listener: shut report of possible null-deref in listener_accept()</li>
<li>BUILD: debug: work around gcc-12 excessive -Warray-bounds warnings</li>
<li>BUILD: ssl: work around bogus warning in gcc 12's -Wformat-truncation</li>
<li>CI: dynamically determine actual version of h2spec</li>
<li>DOC: fix typo "ant" for "and" in INSTALL</li>
<li>BUG/MINOR: map/cli: make sure patterns don't vanish under "show map"'s init</li>
<li>BUG/MINOR: map/cli: protect the backref list during "show map" errors</li>
<li>BUG/MEDIUM: cli: make "show cli sockets" really yield</li>
<li>BUG/MEDIUM: resolvers: make "show resolvers" properly yield</li>
<li>BUG/MINOR: tcp/http: release the expr of set-{src,dst}[-port]</li>
<li>DOC: config: Update doc for PR/PH session states to warn about rewrite failures</li>
<li>MINOR: mux-h2: report a trace event when failing to create a new stream</li>
<li>BUG/MINOR: mux-h2: mark the stream as open before processing it not after</li>
<li>BUG/MAJOR: dns: multi-thread concurrency issue on UDP socket</li>
<li>BUG/MEDIUM: mux-h1: Be able to handle trailers when C-L header was specified</li>
<li>BUG/MEDIUM: mux-fcgi: Be sure to never set EOM flag on an empty HTX message</li>
<li>SCRIPTS: announce-release: add URL of dev packages</li>
<li>CI: github actions: update LibreSSL to 3.5.2</li>
<li>[RELEASE] Released version 2.4.16</li>
<li>BUILD: opentracing: Fix OT build due to misuse of var_clear()</li>
<li>BUILD: proto_uxst: do not set unused flag</li>
<li>BUILD: sockpair: do not set unused flag</li>
<li>BUILD: fd: remove unused variable totlen in fd_write_frag_line()</li>
<li>CLEANUP: acl: Remove unused variable when releasing an acl expression</li>
<li>BUG/MINOR: pools: make sure to also destroy shared pools in pool_destroy_all()</li>
<li>BUG/MINOR: resolvers: Fix memory leak in resolvers_deinit()</li>
<li>BUILD: compiler: properly distinguish weak and global symbols</li>
<li>REGTESTS: fix the race conditions in be2dec.vtc ad field.vtc</li>
<li>MEDIUM: queue: use tasklet_instant_wakeup() to wake tasks</li>
<li>MINOR: task: add a new task_instant_wakeup() function</li>
<li>BUG/MINOR: rules: Fix check_capture() function to use the right rule arguments</li>
<li>DOC: remove my name from the config doc</li>
<li>BUG/MAJOR: connection: Never remove connection from idle lists outside the lock</li>
<li>BUG/MINOR: cache: Disable cache if applet creation fails</li>
<li>SCRIPTS: announce-release: add shortened links to pending issues</li>
<li>DOC: lua: update a few doc URLs</li>
<li>SCRIPTS: announce-release: update the doc's URL</li>
<li>BUG/MEDIUM: compression: Don't forget to update htx_sl and http_msg flags</li>
<li>BUG/MEDIUM: fcgi-app: Use http_msg flags to know if C-L header can be added</li>
<li>BUG/MEDIUM: stream: do not abort connection setup too early</li>
<li>BUILD: compiler: use a more portable set of asm(".weak") statements</li>
<li>BUILD: sched: workaround crazy and dangerous warning in Clang 14</li>
<li>BUG/MEDIUM: mux-h1: Don't request more room on partial trailers</li>
<li>BUG/MINOR: mux-h2: use timeout http-request as a fallback for http-keep-alive</li>
<li>BUG/MINOR: mux-h2: do not use timeout http-keep-alive on backend side</li>
<li>BUILD: debug: mark the __start_mem_stats/__stop_mem_stats symbols as weak</li>
<li>BUG/MINOR: cache: do not display expired entries in "show cache"</li>
<li>BUG/MINOR: mux-h2: do not send GOAWAY if SETTINGS were not sent</li>
<li>CI: cirrus: switch to FreeBSD-13.0</li>
<li>CI: Update to actions/cache@v3</li>
<li>CI: Update to actions/checkout@v3</li>
<li>DEBUG: opentracing: show return values of all functions in the debug output</li>
<li>CLEANUP: opentracing: added variable to store variable length</li>
<li>CLEANUP: opentracing: added flt_ot_smp_init() function</li>
<li>CLEANUP: opentracing: removed unused function flt_ot_var_get()</li>
<li>CLEANUP: opentracing: removed unused function flt_ot_var_unset()</li>
<li>DOC: opentracing: corrected comments in function descriptions</li>
<li>EXAMPLES: opentracing: refined shell scripts for testing filter performance</li>
<li>BUG/MINOR: opentracing: setting the return value in function flt_ot_var_set()</li>
<li>BUG/MEDIUM: http-act: Don't replace URI if path is not found or invalid</li>
<li>BUG/MEDIUM: http-conv: Fix url_enc() to not crush const samples</li>
<li>BUG/MEDIUM: mux-h1: Set outgoing message to DONE when payload length is reached</li>
<li>BUG/MEDIUM: promex: Be sure to never set EOM flag on an empty HTX message</li>
<li>BUG/MEDIUM: hlua: Don't set EOM flag on an empty HTX message in HTTP applet</li>
<li>BUG/MEDIUM: stats: Be sure to never set EOM flag on an empty HTX message</li>
<li>BUG/MINOR: fcgi-app: Don't add C-L header on response to HEAD requests</li>
<li>CI: github actions: update OpenSSL to 3.0.2</li>
<li>BUG/MAJOR: mux_pt: always report the connection error to the conn_stream</li>
<li>BUG/MINOR: cli/stream: fix "shutdown session" to iterate over all threads</li>
<li>BUG/MINOR: samples: add missing context names for sample fetch functions</li>
<li>DOC: reflect H2 timeout changes</li>
<li>BUG/MEDIUM: mux-h2: make use of http-request and keep-alive timeouts</li>
<li>MEDIUM: mux-h2: slightly relax timeout management rules</li>
<li>BUG/MEDIUM: stream-int: do not rely on the connection error once established</li>
<li>BUG/MEDIUM: mux-h1: Properly detect full buffer cases during message parsing</li>
<li>BUG/MEDIUM: mux-fcgi: Properly handle return value of headers/trailers parsing</li>
<li>BUG/MINOR: tools: url2sa reads too far when no port nor path</li>
<li>DOC: config: Explictly add supported MQTT versions</li>
<li>MEDIUM: mqtt: support mqtt_is_valid and mqtt_field_value converters for MQTTv3.1</li>
<li>BUG/MEDIUM: trace: avoid race condition when retrieving session from conn->owner</li>
<li>BUG/MEDIUM: mux-h1: only turn CO_FL_ERROR to CS_FL_ERROR with empty ibuf</li>
<li>CI: github actions: switch to LibreSSL-3.5.1</li>
<li>BUG/MINOR: server/ssl: free the SNI sample expression</li>
<li>BUG/MINOR: tools: fix url2sa return value with IPv4</li>
<li>[RELEASE] Released version 2.4.15</li>
<li>BUILD: tree-wide: mark a few numeric constants as explicitly long long</li>
<li>DOC: Fix usage/examples of deprecated ACLs</li>
<li>BUG/MINOR: stream: make the call_rate only count the no-progress calls</li>
<li>BUG/MINOR: session: fix theoretical risk of memleak in session_accept_fd()</li>
<li>BUG/MAJOR: mux-pt: Always destroy the backend connection on detach</li>
<li>DEBUG: stream: Fix stream trace message to print response buffer state</li>
<li>DEBUG: stream: Add the missing descriptions for stream trace events</li>
<li>BUG/MEDIUM: mcli: Properly handle errors and timeouts during reponse processing</li>
<li>DEBUG: cache: Update underlying buffer when loading HTX message in cache applet</li>
<li>BUG/MINOR: promex: Set conn-stream/channel EOI flags at the end of request</li>
<li>BUG/MINOR: cache: Set conn-stream/channel EOI flags at the end of request</li>
<li>BUG/MINOR: stats: Set conn-stream/channel EOI flags at the end of request</li>
<li>BUG/MINOR: hlua: Set conn-stream/channel EOI flags at the end of request</li>
<li>BUG/MINOR: cli: shows correct mode in "show sess"</li>
<li>BUG/MINOR: add missing modes in proxy_mode_str()</li>
<li>BUILD: pools: fix backport of no-memory-trimming on non-linux OS</li>
<li>MINOR: pools: add a new global option "no-memory-trimming"</li>
<li>BUG/MEDIUM: pools: fix ha_free() on area in the process of being freed</li>
<li>BUG/MINOR: pool: always align pool_heads to 64 bytes</li>
<li>REGTESTS: fix the race conditions in secure_memcmp.vtc</li>
<li>REGTESTS: fix the race conditions in normalize_uri.vtc</li>
<li>BUG/MEDIUM: htx: Fix a possible null derefs in htx_xfer_blks()</li>
<li>CI: github actions: use cache for SSL libs</li>
<li>CI: github actions: use cache for OpenTracing</li>
<li>CI: github actions: add OpenTracing builds</li>
<li>CI: github actions: add the output of $CC -dM -E-</li>
<li>[RELEASE] Released version 2.4.14</li>
<li>BUG/MEDIUM: stream: Abort processing if response buffer allocation fails</li>
<li>CI: github: enable pool debugging by default</li>
<li>REGTESTS: fix the race conditions in 40be_2srv_odd_health_checks</li>
<li>BUG/MINOR: proxy: preset the error message pointer to NULL in parse_new_proxy()</li>
<li>BUG/MAJOR: mux-h2: Be sure to always report HTX parsing error to the app layer</li>
<li>BUG/MEDIUM: mux-h1: Don't wake h1s if mux is blocked on lack of output buffer</li>
<li>BUG/MEDIUM: htx: Be sure to have a buffer to perform a raw copy of a message</li>
<li>BUG/MINOR: tools: url2sa reads ipv4 too far</li>
<li>BUG/MINOR: mailers: negotiate SMTP, not ESMTP</li>
<li>CI: github actions: update OpenSSL to 3.0.1</li>
<li>CI: github: switch to OpenSSL 3.0.0</li>
<li>CI: github actions: relax OpenSSL-3.0.0 version comparision</li>
<li>CI: github actions: -Wno-deprecated-declarations with OpenSSL 3.0.0</li>
<li>CI: github actions: add OpenSSL-3.0.0 builds</li>
<li>BUILD: adopt script/build-ssl.sh for OpenSSL-3.0.0beta2</li>
<li>BUILD: fix compilation for OpenSSL-3.0.0-alpha17</li>
<li>CI: ssl: keep the old method for ancient OpenSSL versions</li>
<li>CI: ssl: do not needlessly build the OpenSSL docs</li>
<li>CI: ssl: enable parallel builds for OpenSSL on Linux</li>
<li>BUG/MAJOR: compiler: relax alignment constraints on certain structures</li>
<li>BUG/MEDIUM: fd: always align fdtab[] to 64 bytes</li>
<li>BUG/MEDIUM: resolvers: Really ignore trailing dot in domain names</li>
<li>BUG/MINOR: sink: Use the right field in appctx context in release callback</li>
<li>BUG/MINOR: mworker: fix a FD leak of a sockpair upon a failed reload</li>
<li>BUG/MEDIUM: mworker: close unused transferred FDs on load failure</li>
<li>MINOR: sock: move the unused socket cleaning code into its own function</li>
<li>[RELEASE] Released version 2.4.13</li>
<li>BUG/MINOR: mux-h2: update the session's idle delay before creating the stream</li>
<li>BUG/MEDIUM: h2/hpack: fix emission of HPACK DTSU after settings change</li>
<li>REGTESTS: peers: leave a bit more time to peers to synchronize</li>
<li>BUG/MAJOR: spoe: properly detach all agents when releasing the applet</li>
<li>BUG/MAJOR: http/htx: prevent unbounded loop in http_manage_server_side_cookies</li>
<li>BUG/MEDIUM: listener: read-lock the listener during accept()</li>
<li>MINOR: listener: replace the listener's spinlock with an rwlock</li>
<li>BUG/MINOR: mworker: does not erase the pidfile upon reload</li>
<li>BUG/MAJOR: sched: prevent rare concurrent wakeup of multi-threaded tasks</li>
<li>DEBUG: pools: replace the link pointer with the caller's address on pool_free()</li>
<li>DEBUG: pools: let's add reverse mapping from cache heads to thread and pool</li>
<li>DEBUG: pools: add extra sanity checks when picking objects from a local cache</li>
<li>BUG/MINOR: pools: always flush pools about to be destroyed</li>
<li>BUG/MEDIUM: mworker: don't lose the stats socket on failed reload</li>
<li>DEBUG: pools: add new build option DEBUG_POOL_INTEGRITY</li>
<li>BUILD: debug/cli: condition test of O_ASYNC to its existence</li>
<li>DEBUG: cli: add a new "debug dev fd" expert command</li>
<li>MEDIUM: h2/hpack: emit a Dynamic Table Size Update after settings change</li>
<li>BUG/MEDIUM: mcli: always realign wrapping buffers before parsing them</li>
<li>BUG/MEDIUM: mcli: do not try to parse empty buffers</li>
<li>BUG/MEDIUM: cli: Never wait for more data on client shutdown</li>
<li>BUG/MINOR: cli: avoid O(bufsize) parsing cost on pipelined commands</li>
<li>MINOR: channel: add new function co_getdelim() to support multiple delimiters</li>
<li>MEDIUM: cli: yield between each pipelined command</li>
<li>BUG/MEDIUM: server: avoid changing healthcheck ctx with set server ssl</li>
<li>BUILD/MINOR: fix solaris build with clang.</li>
<li>BUG/MEDIUM: htx: Adjust length to add DATA block in an empty HTX buffer</li>
<li>BUG/MEDIUM: connection: properly leave stopping list on error</li>
<li>[RELEASE] Released version 2.4.12</li>
<li>BUG/MAJOR: mux-h1: Don't decrement .curr_len for unsent data</li>
<li>BUG/MEDIUM: mworker: don't use _getsocks in wait mode</li>
<li>[RELEASE] Released version 2.4.11</li>
<li>BUG/MEDIUM: http-ana: Preserve response's FLT_END analyser on L7 retry</li>
<li>BUG/MINOR: cli: fix _getsocks with musl libc</li>
<li>BUILD/MINOR: tools: solaris build fix on dladdr.</li>
<li>BUILD/MINOR: cpuset FreeBSD 14 build fix.</li>
<li>BUG/MEDIUM: ssl: free the ckch instance linked to a server</li>
<li>BUG/MINOR: ssl: free the fields in srv->ssl_ctx</li>
<li>MINOR: debug: add support for -dL to dump library names at boot</li>
<li>MINOR: debug: add ability to dump loaded shared libraries</li>
<li>MINOR: compat: detect support for dl_iterate_phdr()</li>
<li>BUG/MINOR: mux-h1: Fix splicing for messages with unknown length</li>
<li>BUG/MEDIUM: mux-h1: Fix splicing by properly detecting end of message</li>
<li>BUILD: makefile: add -Wno-atomic-alignment to work around clang abusive warning</li>
<li>MINOR: proxy: add option idle-close-on-response</li>
<li>REGTESTS: ssl: fix ssl_default_server.vtc</li>
<li>BUG/MEDIUM: ssl: initialize correctly ssl w/ default-server</li>
<li>DOC: fix misspelled keyword "resolve_retries" in resolvers</li>
<li>BUILD: ssl: unbreak the build with newer libressl</li>
<li>BUILD: cli: clear a maybe-unused warning on some older compilers</li>
<li>BUG/MINOR: pools: don't mark ourselves as harmless in DEBUG_UAF mode</li>
<li>BUG/MEDIUM: backend: fix possible sockaddr leak on redispatch</li>
<li>[RELEASE] Released version 2.4.10</li>
<li>BUG/MINOR: backend: restore the SF_SRV_REUSED flag original purpose</li>
<li>BUG/MINOR: backend: do not set sni on connection reuse</li>
<li>MINOR: pools: work around possibly slow malloc_trim() during gc</li>
<li>BUG/MEDIUM: mworker/cli: crash when trying to access an old PID in prompt mode</li>
<li>DOC: config: retry-on list is space-delimited</li>
<li>DOC: config: Specify %Ta is only available in HTTP mode</li>
<li>DOC: spoe: Clarify use of the event directive in spoe-message section</li>
<li>BUG/MINOR: cli/server: Don't crash when a server is added with a custom id</li>
<li>IMPORT: slz: use the correct CRC32 instruction when running in 32-bit mode</li>
<li>BUILD: tree-wide: avoid warnings caused by redundant checks of obj_types</li>
<li>MINOR: cli: "show version" displays the current process version</li>
<li>CI: Github Actions: temporarily disable BoringSSL builds</li>
<li>BUILD: bug: Fix error when compiling with -DDEBUG_STRICT_NOCRASH</li>
<li>MINOR: mux-h1: Improve H1 traces by adding info about http parsers</li>
<li>BUG/MAJOR: segfault using multiple log forward sections.</li>
<li>BUG/MEDIUM: resolvers: Detach query item on response error</li>
<li>BUG/MINOR: server: Don't rely on last default-server to init server SSL context</li>
<li>BUG/MEDIUM: cli: Properly set stream analyzers to process one command at a time</li>
<li>BUILD/MINOR: server: fix compilation without SSL</li>
<li>[RELEASE] Released version 2.4.9</li>
<li>BUG/MINOR: cache: Fix loop on cache entries in "show cache"</li>
<li>MINOR: promex: backend aggregated server check status</li>
<li>MINOR: server: add ws keyword</li>
<li>MEDIUM: server/backend: implement websocket protocol selection</li>
<li>MINOR: connection: add alternative mux_ops param for conn_install_mux_be</li>
<li>MINOR: connection: implement function to update ALPN</li>
<li>MINOR: stream/mux: implement websocket stream flag</li>
<li>BUG/MINOR: ssl: make SSL counters atomic</li>
<li>MINOR: shctx: add a few BUG_ON() for consistency checks</li>
<li>BUG/MINOR: shctx: do not look for available blocks when the first one is enough</li>
<li>BUG/MEDIUM: shctx: leave the block allocator when enough blocks are found</li>
<li>BUG/MEDIUM: cache/cli: make "show cache" thread-safe</li>
<li>BUG/MEDIUM: mux-h2: always process a pending shut read</li>
<li>BUG/MEDIUM: ssl: abort with the correct SSL error when SNI not found</li>
<li>CLEANUP: ssl: fix wrong #else commentary</li>
<li>BUG/MINOR: ssl: free correctly the sni in the backend SSL cache</li>
<li>BUG/MEDIUM: ssl: backend TLS resumption with sni and TLSv1.3</li>
<li>BUILD: makefile: simplify detection of libatomic</li>
<li>BUG/MEDIUM: mux-h1: Handle delayed silent shut in h1_process() to release H1C</li>
<li>BUG/MINOR: stick-table/cli: Check for invalid ipv6 key</li>
<li>BUG/MEDIUM: connection: make cs_shutr/cs_shutw//cs_close() idempotent</li>
<li>BUG/MINOR: mux-h2: Fix H2_CF_DEM_SHORT_READ value</li>
<li>BUG/MINOR: mworker: doesn't launch the program postparser</li>
<li>BUG/MEDIUM: conn-stream: Don't reset CS flags on close</li>
<li>MINOR: mux-h1: Slightly Improve H1 traces</li>
<li>DOC: lua: Be explicit with the Reply object limits</li>
<li>Revert "BUG/MINOR: http-ana: Don't eval front after-response rules if stopped on back"</li>
<li>BUG/MINOR: http-ana: Apply stop to the current section for http-response rules</li>
<li>DOC: config: Fix typo in ssl_fc_unique_id description</li>
<li>BUG/MINOR: cache: properly ignore unparsable max-age in quotes</li>
<li>BUG/MINOR: resolvers: throw log message if trash not large enough for query</li>
<li>BUG/MINOR: resolvers: fix sent messages were counted twice</li>
<li>BUG/MEDIUM: mux-h2: reject upgrade if no RFC8441 support</li>
<li>MINOR: mux-h2: add trace on extended connect usage</li>
<li>MINOR: mux-h2: perform a full cycle shutdown+drain on close</li>
<li>MINOR: connection: add a new CO_FL_WANT_DRAIN flag to force drain on close</li>
</ul>
<h2>Patch Instructions:</h2>
<p>
To install this SUSE Moderate update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".<br/>
Alternatively you can run the command listed for your product:
</p>
<ul class="list-group">
<li class="list-group-item">
openSUSE Leap Micro 5.3
<br/>
<code>zypper in -t patch openSUSE-Leap-Micro-5.3-2023-2118=1</code>
</li>
<li class="list-group-item">
openSUSE Leap 15.4
<br/>
<code>zypper in -t patch openSUSE-SLE-15.4-2023-2118=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Micro for Rancher 5.3
<br/>
<code>zypper in -t patch SUSE-SLE-Micro-5.3-2023-2118=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Micro 5.3
<br/>
<code>zypper in -t patch SUSE-SLE-Micro-5.3-2023-2118=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Micro for Rancher 5.4
<br/>
<code>zypper in -t patch SUSE-SLE-Micro-5.4-2023-2118=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise Micro 5.4
<br/>
<code>zypper in -t patch SUSE-SLE-Micro-5.4-2023-2118=1</code>
</li>
<li class="list-group-item">
SUSE Linux Enterprise High Availability Extension 15 SP4
<br/>
<code>zypper in -t patch SUSE-SLE-Product-HA-15-SP4-2023-2118=1</code>
</li>
</ul>
<h2>Package List:</h2>
<ul>
<li>
openSUSE Leap Micro 5.3 (aarch64 x86_64)
<ul>
<li>haproxy-debuginfo-2.4.22+git0.f8e3218e2-150400.3.13.1</li>
<li>haproxy-debugsource-2.4.22+git0.f8e3218e2-150400.3.13.1</li>
<li>haproxy-2.4.22+git0.f8e3218e2-150400.3.13.1</li>
</ul>
</li>
<li>
openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64)
<ul>
<li>haproxy-debuginfo-2.4.22+git0.f8e3218e2-150400.3.13.1</li>
<li>haproxy-debugsource-2.4.22+git0.f8e3218e2-150400.3.13.1</li>
<li>haproxy-2.4.22+git0.f8e3218e2-150400.3.13.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64)
<ul>
<li>haproxy-debuginfo-2.4.22+git0.f8e3218e2-150400.3.13.1</li>
<li>haproxy-debugsource-2.4.22+git0.f8e3218e2-150400.3.13.1</li>
<li>haproxy-2.4.22+git0.f8e3218e2-150400.3.13.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64)
<ul>
<li>haproxy-debuginfo-2.4.22+git0.f8e3218e2-150400.3.13.1</li>
<li>haproxy-debugsource-2.4.22+git0.f8e3218e2-150400.3.13.1</li>
<li>haproxy-2.4.22+git0.f8e3218e2-150400.3.13.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64)
<ul>
<li>haproxy-debuginfo-2.4.22+git0.f8e3218e2-150400.3.13.1</li>
<li>haproxy-debugsource-2.4.22+git0.f8e3218e2-150400.3.13.1</li>
<li>haproxy-2.4.22+git0.f8e3218e2-150400.3.13.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64)
<ul>
<li>haproxy-debuginfo-2.4.22+git0.f8e3218e2-150400.3.13.1</li>
<li>haproxy-debugsource-2.4.22+git0.f8e3218e2-150400.3.13.1</li>
<li>haproxy-2.4.22+git0.f8e3218e2-150400.3.13.1</li>
</ul>
</li>
<li>
SUSE Linux Enterprise High Availability Extension 15 SP4 (aarch64 ppc64le s390x x86_64)
<ul>
<li>haproxy-debuginfo-2.4.22+git0.f8e3218e2-150400.3.13.1</li>
<li>haproxy-debugsource-2.4.22+git0.f8e3218e2-150400.3.13.1</li>
<li>haproxy-2.4.22+git0.f8e3218e2-150400.3.13.1</li>
</ul>
</li>
</ul>
<h2>References:</h2>
<ul>
<li>
<a href="https://jira.suse.com/browse/PED-3821">https://jira.suse.com/browse/PED-3821</a>
</li>
</ul>
</div>