This update for haserl fixes the following issues:
Update to version 0.9.36:
* Fixed: Its possible to issue a PUT request without a CONTENT-TYPE.
Assume an octet-stream in that case.
This is CVE-2021-29133 and boo#1187671
* Change the Prefix for variables to be the REQUEST_METHOD
(PUT/DELETE/GET/POST) THIS IS A BREAKING CHANGE
* Mitigations vs running haserl to get access to files not
available to the user.