Debian
squid3 package

lp:debian/stretch/squid3

  1. Stretch (9.0)
  2. stretch
Created by Ubuntu Package Importer and last modified
Get this branch:
bzr branch lp:debian/stretch/squid3
Members of Ubuntu branches can upload to this branch. Log in for directions.

Related bugs

Related blueprints

Branch information

Owner:
Ubuntu branches
Status:
Development

Recent revisions

51. By Luigi Gangitano

[ Amos Jeffries <email address hidden> ]
* New Upstream Release (Closes: #799923, #800876)

* debian/squid.rc
  - Grok pid_filename from squid.conf (Closes: #520736)
  - Update SELinux context when creating directories (Closes: #798827)

[ Luigi Gangitano <email address hidden> ]
  - Urgency high due to regression fix for CVE-2015-3400.

50. By Luigi Gangitano

[ Amos Jeffries <email address hidden> ]
* New upstream release (Closes: #789602, #793400, #253777)

* debian/rules
  - Add BUILDCXXFLAGS to use hardening flags during build

* debian/squid.links
  - Add symlink for squid3.8 man(8) page to resolve lintian issue

* debian/squid.postinst
  - Remove unnecessary 'squid -z' (Closes: #794639)

[ Luigi Gangitano <email address hidden> ]
* Rebuild using GCC-5 (Closes: #794536)

* debian/squid.postinst
  - Check for squid3 initscript before we try to execute it

* debian/squid.rc
  - Set working directory to /var/run/squid

49. By Luigi Gangitano

[ Amos Jeffries <email address hidden> ]
* New upstream release (Closes: #760303)
  - Fixed upstream macro issue that fail to pass reproducible builds test
  - Fixes CVE-2015-5400: Improper Protection of Alternate Path
    (Closes: #793128)

* Removed deprecated MSNT and MSNT-multi-domain authentication helpers

* Transition squid3 to squid
  - Renamed squid3 package to squid (Closes: #521053, #565555, #672156)
    (Closes: #294431, #569575, #714334, #279840, #576423, #779127)
  - Renamed squid3-common package to squid-common
  - Renamed squid3-dbg package to squid-dbg
  - Add dummy transitional package squid3

* debian/patches/
  - Removed patches included upstream and refresh others

* debian/squid3-cgi.dirs
  - Removed old unused packaging file

* debian/control
  - Add dependency on libgnutls28-dev for squidclient HTTPS support

[ Luigi Gangitano <email address hidden> ]
* debian/control
  - Changed dependency on libecap3-dev (Closes: #789774)
  - Made squid-common conflict and replace squid3-common
  - Fixed dependencies and sections of transitional packages

* {NEWS,README}.Debian
  - Added information on package name migration

48. By Luigi Gangitano

[ Luigi Gangitano <email address hidden> ]
* debian/patches/31-squid-3.4-13199.patch
  - Added upstream patch fixing excessive CPU usage (Closes: #776461)

* debian/patches/32-squid-3.4-13210.patch
  - Added upstream patch fixing excessive CPU and memory usage in
    NTLM and Negotiate authentication helpers (Closes: #776463)

* debian/patches/33-squid-3.4-13211.patch
  - Added upstream patch fixing a possible replay vulnerability on Digest
    authentication (Closes: #776464)

* debian/patches/34-squid-3.4-13213.patch
  - Added upstream patch fixing incorrect security permissions for
    TOS/DiffServ packet marking (Closes: #776468)

* debian/patches/35-squid-3.4-13203.patch
  - Added upstream patch fixing squidclient unable to connect to host with
    both IPv4 and IPv6 addresses (Closes: #742425)

47. By Luigi Gangitano

[ Luigi Gangitano <email address hidden> ]
* debian/squid3.{pre,post}inst
  - Moved ACL manager fix to postinst (Closes: #773032)

46. By Luigi Gangitano

[ Luigi Gangitano <email address hidden> ]
* debian/squid3.preinst
  - Revert changes on abort-upgrade

45. By Luigi Gangitano

[ Amos Jeffries <email address hidden> ]
* debian/squid3.preinst
  - Remove obsolete manager ACL definition from squid.conf
    when upgrading squid3 package (Closes: #768170)

[ Luigi Gangitano <email address hidden> ]
* debian/squid3.preinst
  - Fix configuration file only if needed and match any uncommented line

44. By Luigi Gangitano

[ Santiago Garcia Mantinan <email address hidden> ]
* Add patch to remove bashisms from cert_tool
* Add manual page for squid-purge
* Create run_dir needed for SMP with several workers to run. This
  fixes #710126 (Closes: #732183, #760400)
* Use CONFIG instead of sq (Closes: #763867)
* Remove find_cache_type and use grepconf (both functions were =).
* Allow find_cache_dir and grepconf to have whitespace in the beginning
  (Closes: #761209)
* Add config check before reload/restart, thanks Freddy (Closes: #728222)

[ Amos Jeffries <email address hidden> ]
* debian/squid3.postinst
  - update grepconf to support SMP macros and sub-config files
    when locating cache_dir and effective user/group

* debian/squid3.rc
  - remove special handling for obsolete COSS cache type
  - change grepconf to support SMP macros and sub-config files

* debian/rules
  - add distribution details to squid -v display output
    this obsoletes the Ubuntu fix-distribution.patch

* debian/control
  - bumped libecap dependency version to 0.2.0-2

* debian/squid3.resolvconf
  - added check on /usr availability before squid3 restart (Closes: #765476)

[ Luigi Gangitano <email address hidden> ]
* debian/squid3.rc
  - Change config check to config parse on start/reload/restart

* debian/control
  - Fixed XS-Vcs-Git Header pointing anonscm.debian.org

43. By Luigi Gangitano

* Urgency high due to security fixes

[ Amos Jeffries <email address hidden> ]
* New upstream release (Closes: #737008)
  - Fixes CVE-2014-6270: off by one in snmp subsystem (Closes: #761002)
  - Fixes CVE-2014-CVE-2014-7141 and CVE-214-7142 (Closes: #760999)
    + pinger remote DoS vulnerabilities
  - Fixes CVE-2014-0128: Denial of Service in SSL-Bump (Closes: #741312)

* debian/patches/
  - remove CVE-2014-3609.patch included upstream
  - remove 17-pod2man-check.patch obsoleted by new version
  - add upstream patch 21-squid-3.4-13176-memoryleak.patch:
    memory leak in external_acl_type helper with cache=0 or ttl=0

* debian/rules
  - add --disable-arch-native to build with portable CPU support

* debian/control
  - libecap API support is specific to version 0.2.0
  - use nettle for crypto library

* debian/watch
  - updated watch pattern for upstream major series

* debian/rules
  - Remove obsolete --enable-underscores (Closes: #693905)

[ Luigi Gangitano <email address hidden> ]
* debian/patches/
  - refreshed all patches to match 3.4.8

* debian/control
  - Added dependency for missing intepreter ksh
  - Bumped Standard-Version to 3.9.6, no change needed
  - Added XS-Vcs-Git Header pointing to Alioth repository

42. By Salvatore Bonaccorso

* Non-maintainer upload by the Security Team.
* Add CVE-2014-3609.patch patch.
  CVE-2014-3609: Denial of Service in Range header processing.
  Ignore Range headers with unidentifiable byte-range values. If squid is
  unable to determine the byte value for ranges, treat the header as
  invalid. (Closes: #759509)

Branch metadata

Branch format:
Branch format 7
Repository format:
Bazaar repository format 2a (needs bzr 1.16 or later)
Stacked on:
lp:debian/squid3
This branch contains Public information 
Everyone can see this information.

Subscribers