LiteSpeed Tech/openlitespeed: Release v1.7.19.3

Name: openlitespeed

Owner: LiteSpeed Tech

Release: Strict header validation, defend HTTP/2 rapid reset, range request fix

Released: 2024-03-28

License: GPL-3.0

Release Assets:

• openlitespeed-1.7.19-aarch64-linux.tgz

• openlitespeed-1.7.19-x86_64-linux.tgz

• [Security] More strict header validations
• [Security] Detect HTTP/2 repaid reset attack and disable HTTP/2 for attacking IP.
• [Improve] Update libmodsecurity to 3.0.11
• [Bug Fix] Fix a HTTP/3 integration issue that causes high CPU usage.
• [Bug Fix] Rewrite rule configured in parent directory is disabled due to an empty .htaccess.
• [Bug Fix] Address a compatibility issue with Ruby application using Rack 3.0+.
• [Bug Fix] Address issue in serving a HTTP range request.
• [Bug Fix] Address range request download error.
• [Bug Fix] Address PHP possible dead lock error.