request #45215 caddyserver/caddy: 2.9.1 -> 2.10.2, quic-go/quic-go: 0.50.1 -> 0.54.1

Infos

Artifact ID#45215

Submitted byJoris MASSON (jmasson)

Last Modified On2025-10-13 11:32

Submitted on2025-10-13 10:44

Rank46939

Details

Summary *

caddyserver/caddy: 2.9.1 -> 2.10.2, quic-go/quic-go: 0.50.1 -> 0.54.1

Original Submission

No security impact for Tuleap as the Mercure server does not use HTTP v3.
Resolves CVE-2025-59530 / GHSA-47m2-4cr7-mhcw

Releases of caddyserver/caddy:

CategoryDependencies

Reported in versionAll

PlatformEmpty

Is an Enhancement or an internal improvement?

[ ] enhancement
[ ] internal improvement

CC listEmpty

Stage

Assigned toJoris MASSON (jmasson)

StatusClosed

Close date2025-10-13

Attachments

AttachmentsEmpty

References

Cross references

Referencing request #45215

Git commit

tuleap/tuleap/stable

chore: caddyserver/caddy: 2.9.1 -> 2.10.2, quic-go/quic-go: 0.50.1 -> 0.54.1 f887319265

Joris MASSON (jmasson) , 2025-10-13 11:11

Show items referenced by request #45215

Referenced by request #45215

Git commit

tuleap/tuleap/stable

chore: caddyserver/caddy: 2.9.1 -> 2.10.2, quic-go/quic-go: 0.50.1 -> 0.54.1 f887319265

Joris MASSON (jmasson) , 2025-10-13 11:11

Other

gerrit #35914

Follow-ups

Thomas Gerbet (tgerbet)

2025-10-13 11:32

Connected artifacts cleared

Thomas Gerbet (tgerbet)

2025-10-13 11:32

Connected artifacts
- Added: rel #44428

Tracker Workflow Manager (forge__tracker_workflow_manager)

2025-10-13 11:31

Closed by @jmasson with git #tuleap/stable/f887319265cad0cb93ff68b3d0b06993b3be4c93.

Status changed from Under review to Closed
Close date set to 2025-10-13

Joris MASSON (jmasson)

2025-10-13 10:51

See gerrit #35914

Status changed from Under implementation to Under review

Public

Referencing request #45215

Git commit

tuleap/tuleap/stable

Referenced by request #45215

Git commit

tuleap/tuleap/stable

Other

Follow-ups