enterprise-support team mailing list archive

Thread
Date

[Bug 1867223] Re: REMOTE_USER environmental variable not set for TLSv1.3 connections

To: enterprise-support@xxxxxxxxxxxxxxxxxxx
From: Launchpad Bug Tracker <1867223@xxxxxxxxxxxxxxxxxx>
Date: Wed, 18 Mar 2020 14:03:44 -0000
Reply-to: Bug 1867223 <1867223@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

This bug was fixed in the package apache2 - 2.4.29-1ubuntu4.13

---------------
apache2 (2.4.29-1ubuntu4.13) bionic-security; urgency=medium

  * Add additional missing commits to TLSv1.3 support. (LP: #1867223)
    - debian/patches/tlsv1.3-support-2.patch: fix whitespace and copy/paste
      typos in modules/ssl/ssl_engine_kernel.c.
    - debian/patches/tlsv1.3-support-3.patch: fail with 403 if
      SSL_verify_client_post_handshake fails in
      modules/ssl/ssl_engine_kernel.c.
    - debian/patches/tlsv1.3-support-4.patch: disable AUTO_RETRY mode for
      OpenSSL 1.1.1, which fixes post-handshake authentication in
      modules/ssl/ssl_engine_init.c.
    - debian/patches/tlsv1.3-support-5.patch: retrieve and set
      sslconn->client_cert here for both "modern" and classic access
      control in modules/ssl/ssl_engine_kernel.c.

 -- Marc Deslauriers <marc.deslauriers@xxxxxxxxxx>  Fri, 13 Mar 2020
08:26:16 -0400

** Changed in: apache2 (Ubuntu)
       Status: Confirmed => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Server/Client Support Team, which is subscribed to apache2 in Ubuntu.
Matching subscriptions: Ubuntu Server/Client Support Team
https://bugs.launchpad.net/bugs/1867223

Title:
  REMOTE_USER environmental variable not set for TLSv1.3 connections

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1867223/+subscriptions

References

[Bug 1867223] [NEW] REMOTE_USER environmental variable not set for TLSv1.3 connections
From: JonH, 2020-03-12