lp:debian/stretch/squid3
- Get this branch:
- bzr branch lp:debian/stretch/squid3
Branch information
- Owner:
- Ubuntu branches
- Status:
- Development
Recent revisions
- 51. By Luigi Gangitano
-
[ Amos Jeffries <email address hidden> ]
* New Upstream Release (Closes: #799923, #800876)* debian/squid.rc
- Grok pid_filename from squid.conf (Closes: #520736)
- Update SELinux context when creating directories (Closes: #798827)[ Luigi Gangitano <email address hidden> ]
- Urgency high due to regression fix for CVE-2015-3400. - 50. By Luigi Gangitano
-
[ Amos Jeffries <email address hidden> ]
* New upstream release (Closes: #789602, #793400, #253777)* debian/rules
- Add BUILDCXXFLAGS to use hardening flags during build* debian/squid.links
- Add symlink for squid3.8 man(8) page to resolve lintian issue* debian/
squid.postinst
- Remove unnecessary 'squid -z' (Closes: #794639)[ Luigi Gangitano <email address hidden> ]
* Rebuild using GCC-5 (Closes: #794536)* debian/
squid.postinst
- Check for squid3 initscript before we try to execute it* debian/squid.rc
- Set working directory to /var/run/squid - 49. By Luigi Gangitano
-
[ Amos Jeffries <email address hidden> ]
* New upstream release (Closes: #760303)
- Fixed upstream macro issue that fail to pass reproducible builds test
- Fixes CVE-2015-5400: Improper Protection of Alternate Path
(Closes: #793128)* Removed deprecated MSNT and MSNT-multi-domain authentication helpers
* Transition squid3 to squid
- Renamed squid3 package to squid (Closes: #521053, #565555, #672156)
(Closes: #294431, #569575, #714334, #279840, #576423, #779127)
- Renamed squid3-common package to squid-common
- Renamed squid3-dbg package to squid-dbg
- Add dummy transitional package squid3* debian/patches/
- Removed patches included upstream and refresh others* debian/
squid3- cgi.dirs
- Removed old unused packaging file* debian/control
- Add dependency on libgnutls28-dev for squidclient HTTPS support[ Luigi Gangitano <email address hidden> ]
* debian/control
- Changed dependency on libecap3-dev (Closes: #789774)
- Made squid-common conflict and replace squid3-common
- Fixed dependencies and sections of transitional packages* {NEWS,README}
.Debian
- Added information on package name migration - 48. By Luigi Gangitano
-
[ Luigi Gangitano <email address hidden> ]
* debian/patches/ 31-squid- 3.4-13199. patch
- Added upstream patch fixing excessive CPU usage (Closes: #776461)* debian/
patches/ 32-squid- 3.4-13210. patch
- Added upstream patch fixing excessive CPU and memory usage in
NTLM and Negotiate authentication helpers (Closes: #776463)* debian/
patches/ 33-squid- 3.4-13211. patch
- Added upstream patch fixing a possible replay vulnerability on Digest
authentication (Closes: #776464)* debian/
patches/ 34-squid- 3.4-13213. patch
- Added upstream patch fixing incorrect security permissions for
TOS/DiffServ packet marking (Closes: #776468)* debian/
patches/ 35-squid- 3.4-13203. patch
- Added upstream patch fixing squidclient unable to connect to host with
both IPv4 and IPv6 addresses (Closes: #742425) - 47. By Luigi Gangitano
-
[ Luigi Gangitano <email address hidden> ]
* debian/squid3. {pre,post} inst
- Moved ACL manager fix to postinst (Closes: #773032) - 46. By Luigi Gangitano
-
[ Luigi Gangitano <email address hidden> ]
* debian/squid3. preinst
- Revert changes on abort-upgrade - 45. By Luigi Gangitano
-
[ Amos Jeffries <email address hidden> ]
* debian/squid3. preinst
- Remove obsolete manager ACL definition from squid.conf
when upgrading squid3 package (Closes: #768170)[ Luigi Gangitano <email address hidden> ]
* debian/squid3. preinst
- Fix configuration file only if needed and match any uncommented line - 44. By Luigi Gangitano
-
[ Santiago Garcia Mantinan <email address hidden> ]
* Add patch to remove bashisms from cert_tool
* Add manual page for squid-purge
* Create run_dir needed for SMP with several workers to run. This
fixes #710126 (Closes: #732183, #760400)
* Use CONFIG instead of sq (Closes: #763867)
* Remove find_cache_type and use grepconf (both functions were =).
* Allow find_cache_dir and grepconf to have whitespace in the beginning
(Closes: #761209)
* Add config check before reload/restart, thanks Freddy (Closes: #728222)[ Amos Jeffries <email address hidden> ]
* debian/squid3. postinst
- update grepconf to support SMP macros and sub-config files
when locating cache_dir and effective user/group* debian/squid3.rc
- remove special handling for obsolete COSS cache type
- change grepconf to support SMP macros and sub-config files* debian/rules
- add distribution details to squid -v display output
this obsoletes the Ubuntu fix-distribution.patch * debian/control
- bumped libecap dependency version to 0.2.0-2* debian/
squid3. resolvconf
- added check on /usr availability before squid3 restart (Closes: #765476)[ Luigi Gangitano <email address hidden> ]
* debian/squid3.rc
- Change config check to config parse on start/reload/restart * debian/control
- Fixed XS-Vcs-Git Header pointing anonscm.debian.org - 43. By Luigi Gangitano
-
* Urgency high due to security fixes
[ Amos Jeffries <email address hidden> ]
* New upstream release (Closes: #737008)
- Fixes CVE-2014-6270: off by one in snmp subsystem (Closes: #761002)
- Fixes CVE-2014-CVE-2014- 7141 and CVE-214-7142 (Closes: #760999)
+ pinger remote DoS vulnerabilities
- Fixes CVE-2014-0128: Denial of Service in SSL-Bump (Closes: #741312)* debian/patches/
- remove CVE-2014-3609.patch included upstream
- remove 17-pod2man-check.patch obsoleted by new version
- add upstream patch 21-squid-3.4-13176- memoryleak. patch:
memory leak in external_acl_type helper with cache=0 or ttl=0* debian/rules
- add --disable-arch-native to build with portable CPU support * debian/control
- libecap API support is specific to version 0.2.0
- use nettle for crypto library* debian/watch
- updated watch pattern for upstream major series* debian/rules
- Remove obsolete --enable-underscores (Closes: #693905) [ Luigi Gangitano <email address hidden> ]
* debian/patches/
- refreshed all patches to match 3.4.8* debian/control
- Added dependency for missing intepreter ksh
- Bumped Standard-Version to 3.9.6, no change needed
- Added XS-Vcs-Git Header pointing to Alioth repository - 42. By Salvatore Bonaccorso
-
* Non-maintainer upload by the Security Team.
* Add CVE-2014-3609.patch patch.
CVE-2014-3609: Denial of Service in Range header processing.
Ignore Range headers with unidentifiable byte-range values. If squid is
unable to determine the byte value for ranges, treat the header as
invalid. (Closes: #759509)
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:debian/squid3