lp:debian/jessie/squid3

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related bugs

Related blueprints

48. By Luigi Gangitano on 2015-01-28

[ Luigi Gangitano <email address hidden> ]
* debian/patches/31-squid-3.4-13199.patch
  - Added upstream patch fixing excessive CPU usage (Closes: #776461)

* debian/patches/32-squid-3.4-13210.patch
  - Added upstream patch fixing excessive CPU and memory usage in
    NTLM and Negotiate authentication helpers (Closes: #776463)

* debian/patches/33-squid-3.4-13211.patch
  - Added upstream patch fixing a possible replay vulnerability on Digest
    authentication (Closes: #776464)

* debian/patches/34-squid-3.4-13213.patch
  - Added upstream patch fixing incorrect security permissions for
    TOS/DiffServ packet marking (Closes: #776468)

* debian/patches/35-squid-3.4-13203.patch
  - Added upstream patch fixing squidclient unable to connect to host with
    both IPv4 and IPv6 addresses (Closes: #742425)

47. By Luigi Gangitano on 2014-12-16

[ Luigi Gangitano <email address hidden> ]
* debian/squid3.{pre,post}inst
  - Moved ACL manager fix to postinst (Closes: #773032)

46. By Luigi Gangitano on 2014-12-05

[ Luigi Gangitano <email address hidden> ]
* debian/squid3.preinst
  - Revert changes on abort-upgrade

45. By Luigi Gangitano on 2014-12-05

[ Amos Jeffries <email address hidden> ]
* debian/squid3.preinst
  - Remove obsolete manager ACL definition from squid.conf
    when upgrading squid3 package (Closes: #768170)

[ Luigi Gangitano <email address hidden> ]
* debian/squid3.preinst
  - Fix configuration file only if needed and match any uncommented line

44. By Luigi Gangitano on 2014-10-29

[ Santiago Garcia Mantinan <email address hidden> ]
* Add patch to remove bashisms from cert_tool
* Add manual page for squid-purge
* Create run_dir needed for SMP with several workers to run. This
  fixes #710126 (Closes: #732183, #760400)
* Use CONFIG instead of sq (Closes: #763867)
* Remove find_cache_type and use grepconf (both functions were =).
* Allow find_cache_dir and grepconf to have whitespace in the beginning
  (Closes: #761209)
* Add config check before reload/restart, thanks Freddy (Closes: #728222)

[ Amos Jeffries <email address hidden> ]
* debian/squid3.postinst
  - update grepconf to support SMP macros and sub-config files
    when locating cache_dir and effective user/group

* debian/squid3.rc
  - remove special handling for obsolete COSS cache type
  - change grepconf to support SMP macros and sub-config files

* debian/rules
  - add distribution details to squid -v display output
    this obsoletes the Ubuntu fix-distribution.patch

* debian/control
  - bumped libecap dependency version to 0.2.0-2

* debian/squid3.resolvconf
  - added check on /usr availability before squid3 restart (Closes: #765476)

[ Luigi Gangitano <email address hidden> ]
* debian/squid3.rc
  - Change config check to config parse on start/reload/restart

* debian/control
  - Fixed XS-Vcs-Git Header pointing anonscm.debian.org

43. By Luigi Gangitano on 2014-10-17

* Urgency high due to security fixes

[ Amos Jeffries <email address hidden> ]
* New upstream release (Closes: #737008)
  - Fixes CVE-2014-6270: off by one in snmp subsystem (Closes: #761002)
  - Fixes CVE-2014-CVE-2014-7141 and CVE-214-7142 (Closes: #760999)
    + pinger remote DoS vulnerabilities
  - Fixes CVE-2014-0128: Denial of Service in SSL-Bump (Closes: #741312)

* debian/patches/
  - remove CVE-2014-3609.patch included upstream
  - remove 17-pod2man-check.patch obsoleted by new version
  - add upstream patch 21-squid-3.4-13176-memoryleak.patch:
    memory leak in external_acl_type helper with cache=0 or ttl=0

* debian/rules
  - add --disable-arch-native to build with portable CPU support

* debian/control
  - libecap API support is specific to version 0.2.0
  - use nettle for crypto library

* debian/watch
  - updated watch pattern for upstream major series

* debian/rules
  - Remove obsolete --enable-underscores (Closes: #693905)

[ Luigi Gangitano <email address hidden> ]
* debian/patches/
  - refreshed all patches to match 3.4.8

* debian/control
  - Added dependency for missing intepreter ksh
  - Bumped Standard-Version to 3.9.6, no change needed
  - Added XS-Vcs-Git Header pointing to Alioth repository

42. By Salvatore Bonaccorso on 2014-08-28

* Non-maintainer upload by the Security Team.
* Add CVE-2014-3609.patch patch.
  CVE-2014-3609: Denial of Service in Range header processing.
  Ignore Range headers with unidentifiable byte-range values. If squid is
  unable to determine the byte value for ranges, treat the header as
  invalid. (Closes: #759509)

41. By gregor herrmann on 2013-11-23

* Non-maintainer upload.
* Fix "FTBFS: cp: cannot stat
  '/«PKGBUILDDIR»/debian/tmp/usr/share/man/man8/basic_db_auth.8': No
  such file or directory":
  new patch 17-pod2man-check.patch:
  fix config.test files' check for perl and pod2man
  (Closes: #725599)

40. By Luigi Gangitano on 2013-07-21

* Urgency high due to security fixes

* New upstream release
  - Fixes security issues (Closes: #716743)
    + Buffer overflow in HTTP request handling (Ref: SQUID-2013:2,
      CVE-2013-4115)
    + DoS in request processing (Ref: SQUID-2013:3, CVE-2013-4123)
  - Includes PNG image used in error pages, with new copyright assignement
    (Closes: #683255)

* Added /var/run/squid3 dir to host sockets in SMP configuration
  (Closes: #710126)

* debian/control
  - Bumped Standard-Version to 3.9.4, no change needed

39. By Luigi Gangitano on 2013-05-06

* New upstream release
  - Added support for SHA passwords in ncsa_auth (Closes: #652010)

* debian/squid3.lintian-overrides
  - Added override for pinger setuid bin

* debian/watch
  - Fixed pattern to skip the last dot

* debian/rules
  - Removed reference to cppunit-basedir