lp:ubuntu/lucid-security/squid3

Branch merges

Propose for merging

No branches dependent on this one.

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related bugs

Related blueprints

22. By Mahyuddin Susanto on 2012-01-18

* SECURITY UPDATE: Fix DoS (assertion failure) via a crafted DNS packet
  that only contains header. (LP: #907686)
  - debian/patches/CVE-2010-0308.dpatch: patch derived from upstream.
  - CVE-2010-0308
* SECURITY UDPATE: Fix DoS (NULL pointer dereference and daemon crash) via
  crafted packets to the HTCP port. (LP: #907690)
  - debian/patches/CVE-2010-0639.dpatch: patch derived from upstream.
  - CVE-2010-0639
* SECURITY UPDATE: Fix DoS (memory corruption and daemon restart) or possibly
  have unspecified other impact via a long line in a response by remote
  Gopher servers. (LP: #907687)
  - debian/patches/CVE-2011-3205.dpatch: patch derived from upstream.
  - CVE-2011-3205

21. By Mahyuddin Susanto on 2011-02-17

* SECURITY UPDATE: Fix DoS due to wrong string handling. (LP: #718127)
  - debian/patches/CVE-2010-3072.dpatch
  - CVE-2010-3072
  - http://www.squid-cache.org/Advisories/SQUID-2010_3.txt

20. By Luigi Gangitano on 2009-09-20

* New upstream release
  - Fixes DoS in exthernal auth header parser (Ref: CVE-2009-2855)

* debian/squid.rc
  - Fixed dependencies in init.d script, thanks to Petter Reinholdtsen
    (Closes: #546362)

* debian/control
 - Bumped Standard-Version to 3.8.3, no change needed

19. By Luigi Gangitano on 2009-08-09

* New upstream release
  - Removed patches integrated upstream
    + 12-gcc44-fixes
    + 13-signed-unsigned-fixes
    + SQUID-2009-2

* debian/rules
  - Enable ARP ACLs (Closes: #538023)
  - Enable SNMP support (Closes: #537187)

* debian/control
  - Fix dependency for squid3-dbg on squid3 =${binary:Version}
  - Added dependency of squid3-dbg on ${misc:Depends}

* debian/squid3-common.postinst
  - Added DEBHELPER placeholder

18. By Luigi Gangitano on 2009-07-11

* debian/patches/13-signed-unsigned-fixes
  - Added upstream patch fixing build errors on 64-bit archs
    (Closes: #536588)

* debian/README.Debian
  - Removed instability notice of development version

* debian/control
  - Fixed squid3-dbg section and priority to match archive override

17. By Luigi Gangitano on 2009-02-16

* New upstream release
  - Removed patches integrated upstream
    + 10-mgr_active_requests
    + 11-SQUID-2009-1

* debian/patches/02-makefile-defaults
  - Removed cachemgr configuration file fix integrated upstream

* debian/rules
  - Disable support for coss witch is marked as unstable upstream

16. By Luigi Gangitano on 2009-02-06

* Urgency high due to security fixes

* debian/patches/11-SQUID-2009-1
  - Added upstream patch fixing Denial of Service in request processing
    (Ref: SQUID-2009-1, CVE: TBA)

15. By Luigi Gangitano on 2009-01-09

* debian/squid3.postinst
  - Fixed non-POSIX option to chown (Closes: #491701)

* debian/rules
  - Removed obsoleted configure options (Closes: 511272)
  - Added --enable-follow-x-forwarded-for configure option

* debian/control
  - Added dependency on ${misc:Depends} to make lintian happy

* debian/squid3.postinst
  - Removed path from squid3 invocation to make lintian happy

* debian/control
  - Bumped Standard-Version to 3.8.0, no change needed

14. By Luigi Gangitano on 2008-07-21

* Urgency high to meet freeze deadline

* New upstream release

* debian/patches/10-mgr_active_requests
  - Added upstream patch fixing delay_pool reporting in cachemgr.cgi

13. By Michael Bienia on 2008-07-15

* Apply upstream patch to fix errors about unused return values
  (fixes a FTBFS; LP: #248318).
  Thanks to Amos Jeffries for providing the patch.
* debian/control:
  + Modify Maintainer value to match DebianMaintainerField spec.