← Back to team overview

enterprise-support team mailing list archive

  1. enterprise-support team
  2. Mailing list archive
  3. Message #08919

[Bug 1979589] [NEW] Apache2 removing content (body) of proxied requests after upgrade USN-5487-1

  Thread PreviousDate PreviousThread Next 
Public bug reported:

Hi There,
we have an Ubuntu 14.04 with ESM. The Apache is used as a reverse proxy for localhost micro-services. Until version 2.4.7-1ubuntu4.22+esm5 which was applied yesterday, it was working correctly. We can see that the content (body) of the proxied requests are removed and the "Content-length" header is set to 0. WE can see this via tcpdump. There is only one virtual host (plus the redirect http to https)
We had to roll back the change to an available earlier version (2.4.7-1ubuntu4.22 amd64) and everything is working again. This is a production server so it has also a security impact...
Please investigate.
I can provide further information if needed.
Thank you very much

** Affects: apache2 (Ubuntu)
     Importance: Undecided
         Status: New

** Description changed:

  Hi There,
- we have also an Ubuntu 14.04 with ESM. The Apache is used as a reverse proxy for localhost micro-services. Up until version 2.4.7-1ubuntu4.22+esm5 it was working correctly. We can see that the content (body) of the proxied requests are removed and the "Content-length" header is set to 0. WE can see this via tcpdump. There is only one virtual host (plus the redirect http to https) 
- We had to roll back the change to an available earlier version (2.4.7-1ubuntu4.22 amd64) and everything is working again. This is a production server so it has also a security impact... 
+ we have also an Ubuntu 14.04 with ESM. The Apache is used as a reverse proxy for localhost micro-services. Up until version 2.4.7-1ubuntu4.22+esm5 which was applied yesterday, it was working correctly. We can see that the content (body) of the proxied requests are removed and the "Content-length" header is set to 0. WE can see this via tcpdump. There is only one virtual host (plus the redirect http to https)
+ We had to roll back the change to an available earlier version (2.4.7-1ubuntu4.22 amd64) and everything is working again. This is a production server so it has also a security impact...
  Please investigate.
- I can provide further information if needed. 
+ I can provide further information if needed.
  Thank you very much

** Description changed:

  Hi There,
- we have also an Ubuntu 14.04 with ESM. The Apache is used as a reverse proxy for localhost micro-services. Up until version 2.4.7-1ubuntu4.22+esm5 which was applied yesterday, it was working correctly. We can see that the content (body) of the proxied requests are removed and the "Content-length" header is set to 0. WE can see this via tcpdump. There is only one virtual host (plus the redirect http to https)
+ we have also an Ubuntu 14.04 with ESM. The Apache is used as a reverse proxy for localhost micro-services. Until version 2.4.7-1ubuntu4.22+esm5 which was applied yesterday, it was working correctly. We can see that the content (body) of the proxied requests are removed and the "Content-length" header is set to 0. WE can see this via tcpdump. There is only one virtual host (plus the redirect http to https)
  We had to roll back the change to an available earlier version (2.4.7-1ubuntu4.22 amd64) and everything is working again. This is a production server so it has also a security impact...
  Please investigate.
  I can provide further information if needed.
  Thank you very much

** Description changed:

  Hi There,
- we have also an Ubuntu 14.04 with ESM. The Apache is used as a reverse proxy for localhost micro-services. Until version 2.4.7-1ubuntu4.22+esm5 which was applied yesterday, it was working correctly. We can see that the content (body) of the proxied requests are removed and the "Content-length" header is set to 0. WE can see this via tcpdump. There is only one virtual host (plus the redirect http to https)
+ we have an Ubuntu 14.04 with ESM. The Apache is used as a reverse proxy for localhost micro-services. Until version 2.4.7-1ubuntu4.22+esm5 which was applied yesterday, it was working correctly. We can see that the content (body) of the proxied requests are removed and the "Content-length" header is set to 0. WE can see this via tcpdump. There is only one virtual host (plus the redirect http to https)
  We had to roll back the change to an available earlier version (2.4.7-1ubuntu4.22 amd64) and everything is working again. This is a production server so it has also a security impact...
  Please investigate.
  I can provide further information if needed.
  Thank you very much

-- 
You received this bug notification because you are a member of Ubuntu
Server/Client Support Team, which is subscribed to apache2 in Ubuntu.
Matching subscriptions: Ubuntu Server/Client Support Team
https://bugs.launchpad.net/bugs/1979589

Title:
  Apache2 removing content (body) of proxied requests after upgrade
  USN-5487-1

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1979589/+subscriptions

Follow ups

  Thread PreviousDate PreviousThread Next