lp:ubuntu/+source/squid

Author: Ubuntu Git Importer
Author Date: 2019-12-04 16:42:25 UTC

DSC file for 4.4-1ubuntu2.3

Author: Marc Deslauriers
Author Date: 2019-11-19 18:18:30 UTC

Import patches-applied version 4.8-1ubuntu2.1 to applied/ubuntu/eoan-security

Imported using git-ubuntu import.

Changelog parent: a342e8b21aecb200cb8c1e6db82d7dc91820361d
Unapplied parent: 7fec0eee702879a8f2cf18eb87aa56bcfee3a813

New changelog entries:
  * SECURITY UPDATE: Multiple issues in URI processing
    - debian/patches/CVE-2019-12523.patch: Update URI parser to use SBuf
      parsing APIs in src/Downloader.cc, src/HttpRequest.cc,
      src/HttpRequest.h, src/Makefile.am, src/acl/Asn.cc,
      src/adaptation/ecap/MessageRep.cc, src/anyp/ProtocolType.h,
      src/anyp/Uri.cc, src/anyp/Uri.h, src/anyp/UriScheme.cc,
      src/anyp/UriScheme.h, src/client_side_request.cc, src/htcp.cc,
      src/icmp/net_db.cc, src/icp_v2.cc, src/mgr/Inquirer.cc,
      src/mime.cc, src/neighbors.cc, src/peer_digest.cc,
      src/servers/FtpServer.cc, src/servers/Http1Server.cc,
      src/store_digest.cc, src/tests/stub_HttpRequest.cc,
      src/tests/stub_libanyp.cc, src/tests/testHttpRequest.cc,
      src/urn.cc.
    - CVE-2019-12523
    - CVE-2019-18676
  * SECURITY UPDATE: Heap Overflow issue in URN processing
    - debian/patches/CVE-2019-12526.patch: fix URN response handling in
      src/urn.cc.
    - CVE-2019-12526
  * SECURITY UPDATE: CSRF issue in HTTP Request processing
    - debian/patches/CVE-2019-18677.patch: prevent truncation for large
      origin-relative domains in src/anyp/Uri.cc, src/anyp/Uri.h,
      src/internal.cc.
    - CVE-2019-18677
  * SECURITY UPDATE: HTTP Request Splitting in HTTP message processing
    - debian/patches/CVE-2019-18678.patch: server MUST reject messages with
      BWS after field-name in src/HttpHeader.cc, src/HttpHeader.h.
    - CVE-2019-18678
    - CVE-2019-18679

Author: Marc Deslauriers
Author Date: 2019-11-19 18:18:30 UTC

Import patches-applied version 4.8-1ubuntu2.1 to applied/ubuntu/eoan-security

Imported using git-ubuntu import.

Changelog parent: a342e8b21aecb200cb8c1e6db82d7dc91820361d
Unapplied parent: 7fec0eee702879a8f2cf18eb87aa56bcfee3a813

New changelog entries:
  * SECURITY UPDATE: Multiple issues in URI processing
    - debian/patches/CVE-2019-12523.patch: Update URI parser to use SBuf
      parsing APIs in src/Downloader.cc, src/HttpRequest.cc,
      src/HttpRequest.h, src/Makefile.am, src/acl/Asn.cc,
      src/adaptation/ecap/MessageRep.cc, src/anyp/ProtocolType.h,
      src/anyp/Uri.cc, src/anyp/Uri.h, src/anyp/UriScheme.cc,
      src/anyp/UriScheme.h, src/client_side_request.cc, src/htcp.cc,
      src/icmp/net_db.cc, src/icp_v2.cc, src/mgr/Inquirer.cc,
      src/mime.cc, src/neighbors.cc, src/peer_digest.cc,
      src/servers/FtpServer.cc, src/servers/Http1Server.cc,
      src/store_digest.cc, src/tests/stub_HttpRequest.cc,
      src/tests/stub_libanyp.cc, src/tests/testHttpRequest.cc,
      src/urn.cc.
    - CVE-2019-12523
    - CVE-2019-18676
  * SECURITY UPDATE: Heap Overflow issue in URN processing
    - debian/patches/CVE-2019-12526.patch: fix URN response handling in
      src/urn.cc.
    - CVE-2019-12526
  * SECURITY UPDATE: CSRF issue in HTTP Request processing
    - debian/patches/CVE-2019-18677.patch: prevent truncation for large
      origin-relative domains in src/anyp/Uri.cc, src/anyp/Uri.h,
      src/internal.cc.
    - CVE-2019-18677
  * SECURITY UPDATE: HTTP Request Splitting in HTTP message processing
    - debian/patches/CVE-2019-18678.patch: server MUST reject messages with
      BWS after field-name in src/HttpHeader.cc, src/HttpHeader.h.
    - CVE-2019-18678
    - CVE-2019-18679

Author: Marc Deslauriers
Author Date: 2019-11-19 18:27:56 UTC

Import patches-unapplied version 4.4-1ubuntu2.3 to ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 8b7e08bba320b3aa2998f89862292f0ddeb97bf7

New changelog entries:
  * SECURITY UPDATE: Multiple issues in URI processing
    - debian/patches/CVE-2019-12523.patch: Update URI parser to use SBuf
      parsing APIs in src/Downloader.cc, src/HttpRequest.cc,
      src/HttpRequest.h, src/Makefile.am, src/acl/Asn.cc,
      src/adaptation/ecap/MessageRep.cc, src/anyp/ProtocolType.h,
      src/anyp/Uri.cc, src/anyp/Uri.h, src/anyp/UriScheme.cc,
      src/anyp/UriScheme.h, src/client_side_request.cc, src/htcp.cc,
      src/icmp/net_db.cc, src/icp_v2.cc, src/mgr/Inquirer.cc,
      src/mime.cc, src/neighbors.cc, src/peer_digest.cc,
      src/servers/FtpServer.cc, src/servers/Http1Server.cc,
      src/store_digest.cc, src/tests/stub_HttpRequest.cc,
      src/tests/stub_libanyp.cc, src/tests/testHttpRequest.cc,
      src/urn.cc.
    - CVE-2019-12523
    - CVE-2019-18676
  * SECURITY UPDATE: Heap Overflow issue in URN processing
    - debian/patches/CVE-2019-12526.patch: fix URN response handling in
      src/urn.cc.
    - CVE-2019-12526
  * SECURITY UPDATE: DoS via incorrect string termination
    - debian/patches/CVE-2019-12854.patch: fix string termination in
      tools/cachemgr.cc.
    - CVE-2019-12854
  * SECURITY UPDATE: CSRF issue in HTTP Request processing
    - debian/patches/CVE-2019-18677.patch: prevent truncation for large
      origin-relative domains in src/anyp/Uri.cc, src/anyp/Uri.h,
      src/internal.cc.
    - CVE-2019-18677
  * SECURITY UPDATE: HTTP Request Splitting in HTTP message processing
    - debian/patches/CVE-2019-18678.patch: server MUST reject messages with
      BWS after field-name in src/HttpHeader.cc, src/HttpHeader.h.
    - CVE-2019-18678
    - CVE-2019-18679

Author: Marc Deslauriers
Author Date: 2019-11-19 18:18:30 UTC

Import patches-applied version 4.8-1ubuntu2.1 to applied/ubuntu/eoan-security

Imported using git-ubuntu import.

Changelog parent: a342e8b21aecb200cb8c1e6db82d7dc91820361d
Unapplied parent: 7fec0eee702879a8f2cf18eb87aa56bcfee3a813

New changelog entries:
  * SECURITY UPDATE: Multiple issues in URI processing
    - debian/patches/CVE-2019-12523.patch: Update URI parser to use SBuf
      parsing APIs in src/Downloader.cc, src/HttpRequest.cc,
      src/HttpRequest.h, src/Makefile.am, src/acl/Asn.cc,
      src/adaptation/ecap/MessageRep.cc, src/anyp/ProtocolType.h,
      src/anyp/Uri.cc, src/anyp/Uri.h, src/anyp/UriScheme.cc,
      src/anyp/UriScheme.h, src/client_side_request.cc, src/htcp.cc,
      src/icmp/net_db.cc, src/icp_v2.cc, src/mgr/Inquirer.cc,
      src/mime.cc, src/neighbors.cc, src/peer_digest.cc,
      src/servers/FtpServer.cc, src/servers/Http1Server.cc,
      src/store_digest.cc, src/tests/stub_HttpRequest.cc,
      src/tests/stub_libanyp.cc, src/tests/testHttpRequest.cc,
      src/urn.cc.
    - CVE-2019-12523
    - CVE-2019-18676
  * SECURITY UPDATE: Heap Overflow issue in URN processing
    - debian/patches/CVE-2019-12526.patch: fix URN response handling in
      src/urn.cc.
    - CVE-2019-12526
  * SECURITY UPDATE: CSRF issue in HTTP Request processing
    - debian/patches/CVE-2019-18677.patch: prevent truncation for large
      origin-relative domains in src/anyp/Uri.cc, src/anyp/Uri.h,
      src/internal.cc.
    - CVE-2019-18677
  * SECURITY UPDATE: HTTP Request Splitting in HTTP message processing
    - debian/patches/CVE-2019-18678.patch: server MUST reject messages with
      BWS after field-name in src/HttpHeader.cc, src/HttpHeader.h.
    - CVE-2019-18678
    - CVE-2019-18679

Author: Marc Deslauriers
Author Date: 2019-11-19 18:18:30 UTC

Import patches-unapplied version 4.8-1ubuntu2.1 to ubuntu/eoan-security

Imported using git-ubuntu import.

Changelog parent: 64b1911f303af6255ebf3d321687e4092bc71ab1

New changelog entries:
  * SECURITY UPDATE: Multiple issues in URI processing
    - debian/patches/CVE-2019-12523.patch: Update URI parser to use SBuf
      parsing APIs in src/Downloader.cc, src/HttpRequest.cc,
      src/HttpRequest.h, src/Makefile.am, src/acl/Asn.cc,
      src/adaptation/ecap/MessageRep.cc, src/anyp/ProtocolType.h,
      src/anyp/Uri.cc, src/anyp/Uri.h, src/anyp/UriScheme.cc,
      src/anyp/UriScheme.h, src/client_side_request.cc, src/htcp.cc,
      src/icmp/net_db.cc, src/icp_v2.cc, src/mgr/Inquirer.cc,
      src/mime.cc, src/neighbors.cc, src/peer_digest.cc,
      src/servers/FtpServer.cc, src/servers/Http1Server.cc,
      src/store_digest.cc, src/tests/stub_HttpRequest.cc,
      src/tests/stub_libanyp.cc, src/tests/testHttpRequest.cc,
      src/urn.cc.
    - CVE-2019-12523
    - CVE-2019-18676
  * SECURITY UPDATE: Heap Overflow issue in URN processing
    - debian/patches/CVE-2019-12526.patch: fix URN response handling in
      src/urn.cc.
    - CVE-2019-12526
  * SECURITY UPDATE: CSRF issue in HTTP Request processing
    - debian/patches/CVE-2019-18677.patch: prevent truncation for large
      origin-relative domains in src/anyp/Uri.cc, src/anyp/Uri.h,
      src/internal.cc.
    - CVE-2019-18677
  * SECURITY UPDATE: HTTP Request Splitting in HTTP message processing
    - debian/patches/CVE-2019-18678.patch: server MUST reject messages with
      BWS after field-name in src/HttpHeader.cc, src/HttpHeader.h.
    - CVE-2019-18678
    - CVE-2019-18679

Author: Marc Deslauriers
Author Date: 2019-11-19 18:18:30 UTC

Import patches-unapplied version 4.8-1ubuntu2.1 to ubuntu/eoan-security

Imported using git-ubuntu import.

Changelog parent: 64b1911f303af6255ebf3d321687e4092bc71ab1

New changelog entries:
  * SECURITY UPDATE: Multiple issues in URI processing
    - debian/patches/CVE-2019-12523.patch: Update URI parser to use SBuf
      parsing APIs in src/Downloader.cc, src/HttpRequest.cc,
      src/HttpRequest.h, src/Makefile.am, src/acl/Asn.cc,
      src/adaptation/ecap/MessageRep.cc, src/anyp/ProtocolType.h,
      src/anyp/Uri.cc, src/anyp/Uri.h, src/anyp/UriScheme.cc,
      src/anyp/UriScheme.h, src/client_side_request.cc, src/htcp.cc,
      src/icmp/net_db.cc, src/icp_v2.cc, src/mgr/Inquirer.cc,
      src/mime.cc, src/neighbors.cc, src/peer_digest.cc,
      src/servers/FtpServer.cc, src/servers/Http1Server.cc,
      src/store_digest.cc, src/tests/stub_HttpRequest.cc,
      src/tests/stub_libanyp.cc, src/tests/testHttpRequest.cc,
      src/urn.cc.
    - CVE-2019-12523
    - CVE-2019-18676
  * SECURITY UPDATE: Heap Overflow issue in URN processing
    - debian/patches/CVE-2019-12526.patch: fix URN response handling in
      src/urn.cc.
    - CVE-2019-12526
  * SECURITY UPDATE: CSRF issue in HTTP Request processing
    - debian/patches/CVE-2019-18677.patch: prevent truncation for large
      origin-relative domains in src/anyp/Uri.cc, src/anyp/Uri.h,
      src/internal.cc.
    - CVE-2019-18677
  * SECURITY UPDATE: HTTP Request Splitting in HTTP message processing
    - debian/patches/CVE-2019-18678.patch: server MUST reject messages with
      BWS after field-name in src/HttpHeader.cc, src/HttpHeader.h.
    - CVE-2019-18678
    - CVE-2019-18679

Author: Marc Deslauriers
Author Date: 2019-11-19 18:27:56 UTC

Import patches-applied version 4.4-1ubuntu2.3 to applied/ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 59ee84f86819163b366b19e982abbeeacefc3980
Unapplied parent: 4efcc283f364287d893162244ff1f41bc2c61aec

New changelog entries:
  * SECURITY UPDATE: Multiple issues in URI processing
    - debian/patches/CVE-2019-12523.patch: Update URI parser to use SBuf
      parsing APIs in src/Downloader.cc, src/HttpRequest.cc,
      src/HttpRequest.h, src/Makefile.am, src/acl/Asn.cc,
      src/adaptation/ecap/MessageRep.cc, src/anyp/ProtocolType.h,
      src/anyp/Uri.cc, src/anyp/Uri.h, src/anyp/UriScheme.cc,
      src/anyp/UriScheme.h, src/client_side_request.cc, src/htcp.cc,
      src/icmp/net_db.cc, src/icp_v2.cc, src/mgr/Inquirer.cc,
      src/mime.cc, src/neighbors.cc, src/peer_digest.cc,
      src/servers/FtpServer.cc, src/servers/Http1Server.cc,
      src/store_digest.cc, src/tests/stub_HttpRequest.cc,
      src/tests/stub_libanyp.cc, src/tests/testHttpRequest.cc,
      src/urn.cc.
    - CVE-2019-12523
    - CVE-2019-18676
  * SECURITY UPDATE: Heap Overflow issue in URN processing
    - debian/patches/CVE-2019-12526.patch: fix URN response handling in
      src/urn.cc.
    - CVE-2019-12526
  * SECURITY UPDATE: DoS via incorrect string termination
    - debian/patches/CVE-2019-12854.patch: fix string termination in
      tools/cachemgr.cc.
    - CVE-2019-12854
  * SECURITY UPDATE: CSRF issue in HTTP Request processing
    - debian/patches/CVE-2019-18677.patch: prevent truncation for large
      origin-relative domains in src/anyp/Uri.cc, src/anyp/Uri.h,
      src/internal.cc.
    - CVE-2019-18677
  * SECURITY UPDATE: HTTP Request Splitting in HTTP message processing
    - debian/patches/CVE-2019-18678.patch: server MUST reject messages with
      BWS after field-name in src/HttpHeader.cc, src/HttpHeader.h.
    - CVE-2019-18678
    - CVE-2019-18679

Author: Marc Deslauriers
Author Date: 2019-11-19 18:27:56 UTC

Import patches-applied version 4.4-1ubuntu2.3 to applied/ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 59ee84f86819163b366b19e982abbeeacefc3980
Unapplied parent: 4efcc283f364287d893162244ff1f41bc2c61aec

New changelog entries:
  * SECURITY UPDATE: Multiple issues in URI processing
    - debian/patches/CVE-2019-12523.patch: Update URI parser to use SBuf
      parsing APIs in src/Downloader.cc, src/HttpRequest.cc,
      src/HttpRequest.h, src/Makefile.am, src/acl/Asn.cc,
      src/adaptation/ecap/MessageRep.cc, src/anyp/ProtocolType.h,
      src/anyp/Uri.cc, src/anyp/Uri.h, src/anyp/UriScheme.cc,
      src/anyp/UriScheme.h, src/client_side_request.cc, src/htcp.cc,
      src/icmp/net_db.cc, src/icp_v2.cc, src/mgr/Inquirer.cc,
      src/mime.cc, src/neighbors.cc, src/peer_digest.cc,
      src/servers/FtpServer.cc, src/servers/Http1Server.cc,
      src/store_digest.cc, src/tests/stub_HttpRequest.cc,
      src/tests/stub_libanyp.cc, src/tests/testHttpRequest.cc,
      src/urn.cc.
    - CVE-2019-12523
    - CVE-2019-18676
  * SECURITY UPDATE: Heap Overflow issue in URN processing
    - debian/patches/CVE-2019-12526.patch: fix URN response handling in
      src/urn.cc.
    - CVE-2019-12526
  * SECURITY UPDATE: DoS via incorrect string termination
    - debian/patches/CVE-2019-12854.patch: fix string termination in
      tools/cachemgr.cc.
    - CVE-2019-12854
  * SECURITY UPDATE: CSRF issue in HTTP Request processing
    - debian/patches/CVE-2019-18677.patch: prevent truncation for large
      origin-relative domains in src/anyp/Uri.cc, src/anyp/Uri.h,
      src/internal.cc.
    - CVE-2019-18677
  * SECURITY UPDATE: HTTP Request Splitting in HTTP message processing
    - debian/patches/CVE-2019-18678.patch: server MUST reject messages with
      BWS after field-name in src/HttpHeader.cc, src/HttpHeader.h.
    - CVE-2019-18678
    - CVE-2019-18679

Author: Marc Deslauriers
Author Date: 2019-11-19 18:27:56 UTC

Import patches-applied version 4.4-1ubuntu2.3 to applied/ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 59ee84f86819163b366b19e982abbeeacefc3980
Unapplied parent: 4efcc283f364287d893162244ff1f41bc2c61aec

New changelog entries:
  * SECURITY UPDATE: Multiple issues in URI processing
    - debian/patches/CVE-2019-12523.patch: Update URI parser to use SBuf
      parsing APIs in src/Downloader.cc, src/HttpRequest.cc,
      src/HttpRequest.h, src/Makefile.am, src/acl/Asn.cc,
      src/adaptation/ecap/MessageRep.cc, src/anyp/ProtocolType.h,
      src/anyp/Uri.cc, src/anyp/Uri.h, src/anyp/UriScheme.cc,
      src/anyp/UriScheme.h, src/client_side_request.cc, src/htcp.cc,
      src/icmp/net_db.cc, src/icp_v2.cc, src/mgr/Inquirer.cc,
      src/mime.cc, src/neighbors.cc, src/peer_digest.cc,
      src/servers/FtpServer.cc, src/servers/Http1Server.cc,
      src/store_digest.cc, src/tests/stub_HttpRequest.cc,
      src/tests/stub_libanyp.cc, src/tests/testHttpRequest.cc,
      src/urn.cc.
    - CVE-2019-12523
    - CVE-2019-18676
  * SECURITY UPDATE: Heap Overflow issue in URN processing
    - debian/patches/CVE-2019-12526.patch: fix URN response handling in
      src/urn.cc.
    - CVE-2019-12526
  * SECURITY UPDATE: DoS via incorrect string termination
    - debian/patches/CVE-2019-12854.patch: fix string termination in
      tools/cachemgr.cc.
    - CVE-2019-12854
  * SECURITY UPDATE: CSRF issue in HTTP Request processing
    - debian/patches/CVE-2019-18677.patch: prevent truncation for large
      origin-relative domains in src/anyp/Uri.cc, src/anyp/Uri.h,
      src/internal.cc.
    - CVE-2019-18677
  * SECURITY UPDATE: HTTP Request Splitting in HTTP message processing
    - debian/patches/CVE-2019-18678.patch: server MUST reject messages with
      BWS after field-name in src/HttpHeader.cc, src/HttpHeader.h.
    - CVE-2019-18678
    - CVE-2019-18679

Author: Marc Deslauriers
Author Date: 2019-11-19 18:18:30 UTC

Import patches-unapplied version 4.8-1ubuntu2.1 to ubuntu/eoan-security

Imported using git-ubuntu import.

Changelog parent: 64b1911f303af6255ebf3d321687e4092bc71ab1

New changelog entries:
  * SECURITY UPDATE: Multiple issues in URI processing
    - debian/patches/CVE-2019-12523.patch: Update URI parser to use SBuf
      parsing APIs in src/Downloader.cc, src/HttpRequest.cc,
      src/HttpRequest.h, src/Makefile.am, src/acl/Asn.cc,
      src/adaptation/ecap/MessageRep.cc, src/anyp/ProtocolType.h,
      src/anyp/Uri.cc, src/anyp/Uri.h, src/anyp/UriScheme.cc,
      src/anyp/UriScheme.h, src/client_side_request.cc, src/htcp.cc,
      src/icmp/net_db.cc, src/icp_v2.cc, src/mgr/Inquirer.cc,
      src/mime.cc, src/neighbors.cc, src/peer_digest.cc,
      src/servers/FtpServer.cc, src/servers/Http1Server.cc,
      src/store_digest.cc, src/tests/stub_HttpRequest.cc,
      src/tests/stub_libanyp.cc, src/tests/testHttpRequest.cc,
      src/urn.cc.
    - CVE-2019-12523
    - CVE-2019-18676
  * SECURITY UPDATE: Heap Overflow issue in URN processing
    - debian/patches/CVE-2019-12526.patch: fix URN response handling in
      src/urn.cc.
    - CVE-2019-12526
  * SECURITY UPDATE: CSRF issue in HTTP Request processing
    - debian/patches/CVE-2019-18677.patch: prevent truncation for large
      origin-relative domains in src/anyp/Uri.cc, src/anyp/Uri.h,
      src/internal.cc.
    - CVE-2019-18677
  * SECURITY UPDATE: HTTP Request Splitting in HTTP message processing
    - debian/patches/CVE-2019-18678.patch: server MUST reject messages with
      BWS after field-name in src/HttpHeader.cc, src/HttpHeader.h.
    - CVE-2019-18678
    - CVE-2019-18679

Author: Marc Deslauriers
Author Date: 2019-11-19 18:27:56 UTC

Import patches-unapplied version 4.4-1ubuntu2.3 to ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 8b7e08bba320b3aa2998f89862292f0ddeb97bf7

New changelog entries:
  * SECURITY UPDATE: Multiple issues in URI processing
    - debian/patches/CVE-2019-12523.patch: Update URI parser to use SBuf
      parsing APIs in src/Downloader.cc, src/HttpRequest.cc,
      src/HttpRequest.h, src/Makefile.am, src/acl/Asn.cc,
      src/adaptation/ecap/MessageRep.cc, src/anyp/ProtocolType.h,
      src/anyp/Uri.cc, src/anyp/Uri.h, src/anyp/UriScheme.cc,
      src/anyp/UriScheme.h, src/client_side_request.cc, src/htcp.cc,
      src/icmp/net_db.cc, src/icp_v2.cc, src/mgr/Inquirer.cc,
      src/mime.cc, src/neighbors.cc, src/peer_digest.cc,
      src/servers/FtpServer.cc, src/servers/Http1Server.cc,
      src/store_digest.cc, src/tests/stub_HttpRequest.cc,
      src/tests/stub_libanyp.cc, src/tests/testHttpRequest.cc,
      src/urn.cc.
    - CVE-2019-12523
    - CVE-2019-18676
  * SECURITY UPDATE: Heap Overflow issue in URN processing
    - debian/patches/CVE-2019-12526.patch: fix URN response handling in
      src/urn.cc.
    - CVE-2019-12526
  * SECURITY UPDATE: DoS via incorrect string termination
    - debian/patches/CVE-2019-12854.patch: fix string termination in
      tools/cachemgr.cc.
    - CVE-2019-12854
  * SECURITY UPDATE: CSRF issue in HTTP Request processing
    - debian/patches/CVE-2019-18677.patch: prevent truncation for large
      origin-relative domains in src/anyp/Uri.cc, src/anyp/Uri.h,
      src/internal.cc.
    - CVE-2019-18677
  * SECURITY UPDATE: HTTP Request Splitting in HTTP message processing
    - debian/patches/CVE-2019-18678.patch: server MUST reject messages with
      BWS after field-name in src/HttpHeader.cc, src/HttpHeader.h.
    - CVE-2019-18678
    - CVE-2019-18679

Author: Marc Deslauriers
Author Date: 2019-11-19 18:27:56 UTC

Import patches-unapplied version 4.4-1ubuntu2.3 to ubuntu/disco-security

Imported using git-ubuntu import.

Changelog parent: 8b7e08bba320b3aa2998f89862292f0ddeb97bf7

New changelog entries:
  * SECURITY UPDATE: Multiple issues in URI processing
    - debian/patches/CVE-2019-12523.patch: Update URI parser to use SBuf
      parsing APIs in src/Downloader.cc, src/HttpRequest.cc,
      src/HttpRequest.h, src/Makefile.am, src/acl/Asn.cc,
      src/adaptation/ecap/MessageRep.cc, src/anyp/ProtocolType.h,
      src/anyp/Uri.cc, src/anyp/Uri.h, src/anyp/UriScheme.cc,
      src/anyp/UriScheme.h, src/client_side_request.cc, src/htcp.cc,
      src/icmp/net_db.cc, src/icp_v2.cc, src/mgr/Inquirer.cc,
      src/mime.cc, src/neighbors.cc, src/peer_digest.cc,
      src/servers/FtpServer.cc, src/servers/Http1Server.cc,
      src/store_digest.cc, src/tests/stub_HttpRequest.cc,
      src/tests/stub_libanyp.cc, src/tests/testHttpRequest.cc,
      src/urn.cc.
    - CVE-2019-12523
    - CVE-2019-18676
  * SECURITY UPDATE: Heap Overflow issue in URN processing
    - debian/patches/CVE-2019-12526.patch: fix URN response handling in
      src/urn.cc.
    - CVE-2019-12526
  * SECURITY UPDATE: DoS via incorrect string termination
    - debian/patches/CVE-2019-12854.patch: fix string termination in
      tools/cachemgr.cc.
    - CVE-2019-12854
  * SECURITY UPDATE: CSRF issue in HTTP Request processing
    - debian/patches/CVE-2019-18677.patch: prevent truncation for large
      origin-relative domains in src/anyp/Uri.cc, src/anyp/Uri.h,
      src/internal.cc.
    - CVE-2019-18677
  * SECURITY UPDATE: HTTP Request Splitting in HTTP message processing
    - debian/patches/CVE-2019-18678.patch: server MUST reject messages with
      BWS after field-name in src/HttpHeader.cc, src/HttpHeader.h.
    - CVE-2019-18678
    - CVE-2019-18679

Author: Lucas Kanashiro
Author Date: 2019-11-14 19:33:10 UTC

Import patches-applied version 4.9-2ubuntu1 to applied/ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: 8310911253e4969a622af29b7042b3ceb08852f7
Unapplied parent: 3b57c9abcbd76dfaf77169500ee0992c8292791a

New changelog entries:
  * Merge with Debian unstable. Remaining changes:
    - Use snakeoil certificates.
    - Add an example refresh pattern for debs.
    - d/usr.sbin.squid: Add sections for maas-proxy, squid-deb-proxy,
      squidguard
    - d/rules: Add -Wno-format-truncation to CXXFLAGS as a workaround if
      building for ppc64el. On that arch, dpkg-buildflags sets -O3 instead of
      -O2 and that triggers a format-truncation error on pcon.cc. See
      See https://bugs.squid-cache.org/show_bug.cgi?id=4875
    - d/p/drop-sysctl_h.patch: no longer include sysctl.h as it was
      deprecated in glibc 2.30 (LP #1843325)
  * Dropped:
    - d/rules: Only use -latomic with the intended architectures, instead of
      all of them. This matches what was suggested in
      https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907106#5
      [Fixed upstream]
    - d/NEWS.debian: rename d/NEWS.debian to d/NEWS so that
      dh_installchangelogs can pick it up. dh_installchangelogs handles
      d/NEWS or d/<package>.NEWS, but not NEWS.debian.
      [Fixed upstream]
    - debian/patches/more-gcc-9-fixes.patch: switch to xstrncpy in
      lib/smblib/smblib-util.c. (LP #1835831)
      [Fixed upstream]
    - d/t/test-squid.py: test_zz_apparmor(): bail early if securityfs isn't
      mounted
      [Fixed upstream]

Author: Lucas Kanashiro
Author Date: 2019-11-14 19:33:10 UTC

Import patches-unapplied version 4.9-2ubuntu1 to ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: c7451bad0760bc3d7b78e8c8d23d7e6375abb10e

New changelog entries:
  * Merge with Debian unstable. Remaining changes:
    - Use snakeoil certificates.
    - Add an example refresh pattern for debs.
    - d/usr.sbin.squid: Add sections for maas-proxy, squid-deb-proxy,
      squidguard
    - d/rules: Add -Wno-format-truncation to CXXFLAGS as a workaround if
      building for ppc64el. On that arch, dpkg-buildflags sets -O3 instead of
      -O2 and that triggers a format-truncation error on pcon.cc. See
      See https://bugs.squid-cache.org/show_bug.cgi?id=4875
    - d/p/drop-sysctl_h.patch: no longer include sysctl.h as it was
      deprecated in glibc 2.30 (LP #1843325)
  * Dropped:
    - d/rules: Only use -latomic with the intended architectures, instead of
      all of them. This matches what was suggested in
      https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907106#5
      [Fixed upstream]
    - d/NEWS.debian: rename d/NEWS.debian to d/NEWS so that
      dh_installchangelogs can pick it up. dh_installchangelogs handles
      d/NEWS or d/<package>.NEWS, but not NEWS.debian.
      [Fixed upstream]
    - debian/patches/more-gcc-9-fixes.patch: switch to xstrncpy in
      lib/smblib/smblib-util.c. (LP #1835831)
      [Fixed upstream]
    - d/t/test-squid.py: test_zz_apparmor(): bail early if securityfs isn't
      mounted
      [Fixed upstream]

Author: Lucas Kanashiro
Author Date: 2019-11-14 19:33:10 UTC

Import patches-unapplied version 4.9-2ubuntu1 to ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: c7451bad0760bc3d7b78e8c8d23d7e6375abb10e

New changelog entries:
  * Merge with Debian unstable. Remaining changes:
    - Use snakeoil certificates.
    - Add an example refresh pattern for debs.
    - d/usr.sbin.squid: Add sections for maas-proxy, squid-deb-proxy,
      squidguard
    - d/rules: Add -Wno-format-truncation to CXXFLAGS as a workaround if
      building for ppc64el. On that arch, dpkg-buildflags sets -O3 instead of
      -O2 and that triggers a format-truncation error on pcon.cc. See
      See https://bugs.squid-cache.org/show_bug.cgi?id=4875
    - d/p/drop-sysctl_h.patch: no longer include sysctl.h as it was
      deprecated in glibc 2.30 (LP #1843325)
  * Dropped:
    - d/rules: Only use -latomic with the intended architectures, instead of
      all of them. This matches what was suggested in
      https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907106#5
      [Fixed upstream]
    - d/NEWS.debian: rename d/NEWS.debian to d/NEWS so that
      dh_installchangelogs can pick it up. dh_installchangelogs handles
      d/NEWS or d/<package>.NEWS, but not NEWS.debian.
      [Fixed upstream]
    - debian/patches/more-gcc-9-fixes.patch: switch to xstrncpy in
      lib/smblib/smblib-util.c. (LP #1835831)
      [Fixed upstream]
    - d/t/test-squid.py: test_zz_apparmor(): bail early if securityfs isn't
      mounted
      [Fixed upstream]

Author: Lucas Kanashiro
Author Date: 2019-11-14 19:33:10 UTC

Import patches-applied version 4.9-2ubuntu1 to applied/ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: 8310911253e4969a622af29b7042b3ceb08852f7
Unapplied parent: 3b57c9abcbd76dfaf77169500ee0992c8292791a

New changelog entries:
  * Merge with Debian unstable. Remaining changes:
    - Use snakeoil certificates.
    - Add an example refresh pattern for debs.
    - d/usr.sbin.squid: Add sections for maas-proxy, squid-deb-proxy,
      squidguard
    - d/rules: Add -Wno-format-truncation to CXXFLAGS as a workaround if
      building for ppc64el. On that arch, dpkg-buildflags sets -O3 instead of
      -O2 and that triggers a format-truncation error on pcon.cc. See
      See https://bugs.squid-cache.org/show_bug.cgi?id=4875
    - d/p/drop-sysctl_h.patch: no longer include sysctl.h as it was
      deprecated in glibc 2.30 (LP #1843325)
  * Dropped:
    - d/rules: Only use -latomic with the intended architectures, instead of
      all of them. This matches what was suggested in
      https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907106#5
      [Fixed upstream]
    - d/NEWS.debian: rename d/NEWS.debian to d/NEWS so that
      dh_installchangelogs can pick it up. dh_installchangelogs handles
      d/NEWS or d/<package>.NEWS, but not NEWS.debian.
      [Fixed upstream]
    - debian/patches/more-gcc-9-fixes.patch: switch to xstrncpy in
      lib/smblib/smblib-util.c. (LP #1835831)
      [Fixed upstream]
    - d/t/test-squid.py: test_zz_apparmor(): bail early if securityfs isn't
      mounted
      [Fixed upstream]

Author: Lucas Kanashiro
Author Date: 2019-11-14 19:33:10 UTC

Import patches-applied version 4.9-2ubuntu1 to applied/ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: 8310911253e4969a622af29b7042b3ceb08852f7
Unapplied parent: 3b57c9abcbd76dfaf77169500ee0992c8292791a

New changelog entries:
  * Merge with Debian unstable. Remaining changes:
    - Use snakeoil certificates.
    - Add an example refresh pattern for debs.
    - d/usr.sbin.squid: Add sections for maas-proxy, squid-deb-proxy,
      squidguard
    - d/rules: Add -Wno-format-truncation to CXXFLAGS as a workaround if
      building for ppc64el. On that arch, dpkg-buildflags sets -O3 instead of
      -O2 and that triggers a format-truncation error on pcon.cc. See
      See https://bugs.squid-cache.org/show_bug.cgi?id=4875
    - d/p/drop-sysctl_h.patch: no longer include sysctl.h as it was
      deprecated in glibc 2.30 (LP #1843325)
  * Dropped:
    - d/rules: Only use -latomic with the intended architectures, instead of
      all of them. This matches what was suggested in
      https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907106#5
      [Fixed upstream]
    - d/NEWS.debian: rename d/NEWS.debian to d/NEWS so that
      dh_installchangelogs can pick it up. dh_installchangelogs handles
      d/NEWS or d/<package>.NEWS, but not NEWS.debian.
      [Fixed upstream]
    - debian/patches/more-gcc-9-fixes.patch: switch to xstrncpy in
      lib/smblib/smblib-util.c. (LP #1835831)
      [Fixed upstream]
    - d/t/test-squid.py: test_zz_apparmor(): bail early if securityfs isn't
      mounted
      [Fixed upstream]

Author: Lucas Kanashiro
Author Date: 2019-11-14 19:33:10 UTC

Import patches-applied version 4.9-2ubuntu1 to applied/ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: 8310911253e4969a622af29b7042b3ceb08852f7
Unapplied parent: 3b57c9abcbd76dfaf77169500ee0992c8292791a

New changelog entries:
  * Merge with Debian unstable. Remaining changes:
    - Use snakeoil certificates.
    - Add an example refresh pattern for debs.
    - d/usr.sbin.squid: Add sections for maas-proxy, squid-deb-proxy,
      squidguard
    - d/rules: Add -Wno-format-truncation to CXXFLAGS as a workaround if
      building for ppc64el. On that arch, dpkg-buildflags sets -O3 instead of
      -O2 and that triggers a format-truncation error on pcon.cc. See
      See https://bugs.squid-cache.org/show_bug.cgi?id=4875
    - d/p/drop-sysctl_h.patch: no longer include sysctl.h as it was
      deprecated in glibc 2.30 (LP #1843325)
  * Dropped:
    - d/rules: Only use -latomic with the intended architectures, instead of
      all of them. This matches what was suggested in
      https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907106#5
      [Fixed upstream]
    - d/NEWS.debian: rename d/NEWS.debian to d/NEWS so that
      dh_installchangelogs can pick it up. dh_installchangelogs handles
      d/NEWS or d/<package>.NEWS, but not NEWS.debian.
      [Fixed upstream]
    - debian/patches/more-gcc-9-fixes.patch: switch to xstrncpy in
      lib/smblib/smblib-util.c. (LP #1835831)
      [Fixed upstream]
    - d/t/test-squid.py: test_zz_apparmor(): bail early if securityfs isn't
      mounted
      [Fixed upstream]

Author: Lucas Kanashiro
Author Date: 2019-11-14 19:33:10 UTC

Import patches-unapplied version 4.9-2ubuntu1 to ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: c7451bad0760bc3d7b78e8c8d23d7e6375abb10e

New changelog entries:
  * Merge with Debian unstable. Remaining changes:
    - Use snakeoil certificates.
    - Add an example refresh pattern for debs.
    - d/usr.sbin.squid: Add sections for maas-proxy, squid-deb-proxy,
      squidguard
    - d/rules: Add -Wno-format-truncation to CXXFLAGS as a workaround if
      building for ppc64el. On that arch, dpkg-buildflags sets -O3 instead of
      -O2 and that triggers a format-truncation error on pcon.cc. See
      See https://bugs.squid-cache.org/show_bug.cgi?id=4875
    - d/p/drop-sysctl_h.patch: no longer include sysctl.h as it was
      deprecated in glibc 2.30 (LP #1843325)
  * Dropped:
    - d/rules: Only use -latomic with the intended architectures, instead of
      all of them. This matches what was suggested in
      https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907106#5
      [Fixed upstream]
    - d/NEWS.debian: rename d/NEWS.debian to d/NEWS so that
      dh_installchangelogs can pick it up. dh_installchangelogs handles
      d/NEWS or d/<package>.NEWS, but not NEWS.debian.
      [Fixed upstream]
    - debian/patches/more-gcc-9-fixes.patch: switch to xstrncpy in
      lib/smblib/smblib-util.c. (LP #1835831)
      [Fixed upstream]
    - d/t/test-squid.py: test_zz_apparmor(): bail early if securityfs isn't
      mounted
      [Fixed upstream]

Author: Lucas Kanashiro
Author Date: 2019-11-14 19:33:10 UTC

Import patches-unapplied version 4.9-2ubuntu1 to ubuntu/focal-proposed

Imported using git-ubuntu import.

Changelog parent: c7451bad0760bc3d7b78e8c8d23d7e6375abb10e

New changelog entries:
  * Merge with Debian unstable. Remaining changes:
    - Use snakeoil certificates.
    - Add an example refresh pattern for debs.
    - d/usr.sbin.squid: Add sections for maas-proxy, squid-deb-proxy,
      squidguard
    - d/rules: Add -Wno-format-truncation to CXXFLAGS as a workaround if
      building for ppc64el. On that arch, dpkg-buildflags sets -O3 instead of
      -O2 and that triggers a format-truncation error on pcon.cc. See
      See https://bugs.squid-cache.org/show_bug.cgi?id=4875
    - d/p/drop-sysctl_h.patch: no longer include sysctl.h as it was
      deprecated in glibc 2.30 (LP #1843325)
  * Dropped:
    - d/rules: Only use -latomic with the intended architectures, instead of
      all of them. This matches what was suggested in
      https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907106#5
      [Fixed upstream]
    - d/NEWS.debian: rename d/NEWS.debian to d/NEWS so that
      dh_installchangelogs can pick it up. dh_installchangelogs handles
      d/NEWS or d/<package>.NEWS, but not NEWS.debian.
      [Fixed upstream]
    - debian/patches/more-gcc-9-fixes.patch: switch to xstrncpy in
      lib/smblib/smblib-util.c. (LP #1835831)
      [Fixed upstream]
    - d/t/test-squid.py: test_zz_apparmor(): bail early if securityfs isn't
      mounted
      [Fixed upstream]

Author: Ubuntu Git Importer
Author Date: 2019-11-14 17:07:59 UTC

DSC file for 4.9-2

Author: Luigi Gangitano
Author Date: 2019-11-14 09:12:54 UTC

Import patches-unapplied version 4.9-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 4aa93e0d22dbe169eb5acc8fec2f616e1b5d2c53

New changelog entries:
  [ Andreas Hasenack <andreas@canonical.com> ]
  * debian/rules
    - Only use -latomic with the intended architectures, instead of all of them
  * debian/NEWS
    - Rename d/NEWS.debian to d/NEWS so that dh_installchangelogs can pick it
  * debian/{watch,signing-key.asc}
    - Check upstream gpg signature
  * debian/test/test-squid.py
    - Re-enable apparmor test
  [ Luigi Gangitano <luigi@debian.org> ]
  * debian/squid.rc
    - Change to --foreground while creating cache dirs to avoid SMP bug
  * debian/squid.resolvconf
    - Merge previous check for /usr being mounted before restart

Author: Luigi Gangitano
Author Date: 2019-11-14 09:12:54 UTC

Import patches-applied version 4.9-2 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 166850cf5d80a97a93115a206b244dfc81300f85
Unapplied parent: 88bd2c8d6904e43b46d864e5135eceb19de36bb6

New changelog entries:
  [ Andreas Hasenack <andreas@canonical.com> ]
  * debian/rules
    - Only use -latomic with the intended architectures, instead of all of them
  * debian/NEWS
    - Rename d/NEWS.debian to d/NEWS so that dh_installchangelogs can pick it
  * debian/{watch,signing-key.asc}
    - Check upstream gpg signature
  * debian/test/test-squid.py
    - Re-enable apparmor test
  [ Luigi Gangitano <luigi@debian.org> ]
  * debian/squid.rc
    - Change to --foreground while creating cache dirs to avoid SMP bug
  * debian/squid.resolvconf
    - Merge previous check for /usr being mounted before restart

Author: Andreas Hasenack
Author Date: 2019-09-09 20:31:45 UTC

Import patches-unapplied version 4.8-1ubuntu2 to ubuntu/eoan-proposed

Imported using git-ubuntu import.

Upload parent: d4adfde85bc6da0e3b270c1d2044c9ac67e0adbd

Author: Andreas Hasenack
Author Date: 2019-09-09 20:31:45 UTC

Import patches-applied version 4.8-1ubuntu2 to applied/ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: fab4bd384beae719f10ac0688c75ec9f352039ba
Unapplied parent: e5b48860b480bb13f51b177cf6f0b88441f4534c

New changelog entries:
  * d/p/drop-sysctl_h.patch: no longer include sysctl.h as it was
    deprecated in glibc 2.30 (LP: #1843325)

Author: Andreas Hasenack
Author Date: 2019-09-09 20:31:45 UTC

Import patches-unapplied version 4.8-1ubuntu2 to ubuntu/eoan-proposed

Imported using git-ubuntu import.

Upload parent: d4adfde85bc6da0e3b270c1d2044c9ac67e0adbd

Author: Andreas Hasenack
Author Date: 2019-09-09 20:31:45 UTC

Import patches-applied version 4.8-1ubuntu2 to applied/ubuntu/eoan-proposed

Imported using git-ubuntu import.

Changelog parent: fab4bd384beae719f10ac0688c75ec9f352039ba
Unapplied parent: e5b48860b480bb13f51b177cf6f0b88441f4534c

New changelog entries:
  * d/p/drop-sysctl_h.patch: no longer include sysctl.h as it was
    deprecated in glibc 2.30 (LP: #1843325)

Author: Salvatore Bonaccorso
Author Date: 2019-07-24 17:33:25 UTC

Import patches-unapplied version 4.6-1+deb10u1 to debian/buster

Imported using git-ubuntu import.

Changelog parent: c1d6507bd19ff35c5b8ffd07b3f1a632ceda88be

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * Denial of Service issue in cachemgr.cgi (CVE-2019-12854)
  * Denial of Service issue in HTTP Basic Authentication processing
    (CVE-2019-12529)
  * Denial of Service issue in HTTP Digest Authentication processing
    (CVE-2019-12525)
  * Heap Overflow issue in HTTP Basic Authentication processing
    (CVE-2019-12527)
  * Multiple Cross-Site Scripting issues in cachemgr.cgi (CVE-2019-13345)
    (Closes: #931478)

Author: Salvatore Bonaccorso
Author Date: 2019-07-24 17:33:25 UTC

Import patches-applied version 4.6-1+deb10u1 to applied/debian/buster

Imported using git-ubuntu import.

Changelog parent: 6faac916341f3a19f714e94e057160dd027b1d1f
Unapplied parent: d2136bd8fc282e067f4a8a408b75c4cc201d3181

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * Denial of Service issue in cachemgr.cgi (CVE-2019-12854)
  * Denial of Service issue in HTTP Basic Authentication processing
    (CVE-2019-12529)
  * Denial of Service issue in HTTP Digest Authentication processing
    (CVE-2019-12525)
  * Heap Overflow issue in HTTP Basic Authentication processing
    (CVE-2019-12527)
  * Multiple Cross-Site Scripting issues in cachemgr.cgi (CVE-2019-13345)
    (Closes: #931478)

Author: Andreas Hasenack
Author Date: 2019-02-28 16:27:11 UTC

Import patches-unapplied version 4.1-1ubuntu3.1 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Upload parent: f1951cfb58184a00ba197bfb2a41973d7d4cac8c

Author: Andreas Hasenack
Author Date: 2019-02-28 16:27:11 UTC

Import patches-applied version 4.1-1ubuntu3.1 to applied/ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: 942cef64cbb134924f7daa4a287027a3c1a9dd03
Unapplied parent: b872aac4fbd6c0fd84a9db7d5825f0a8fe545ed1

New changelog entries:
  * d/p/smp-startup-error.patch: fix startup error in SMP mode, when workers
    is set. (LP: #1815852)
  * d/squid.tmpfile: add tmpfiles configuration to handle /var/run/squid
    at boot. Thanks to Luigi Gangitano <luigi@debian.org> (LP: #1816006)

Author: Andreas Hasenack
Author Date: 2019-02-28 16:27:11 UTC

Import patches-applied version 4.1-1ubuntu3.1 to applied/ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: 942cef64cbb134924f7daa4a287027a3c1a9dd03
Unapplied parent: b872aac4fbd6c0fd84a9db7d5825f0a8fe545ed1

New changelog entries:
  * d/p/smp-startup-error.patch: fix startup error in SMP mode, when workers
    is set. (LP: #1815852)
  * d/squid.tmpfile: add tmpfiles configuration to handle /var/run/squid
    at boot. Thanks to Luigi Gangitano <luigi@debian.org> (LP: #1816006)

Author: Andreas Hasenack
Author Date: 2019-02-28 16:27:11 UTC

Import patches-applied version 4.1-1ubuntu3.1 to applied/ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: 942cef64cbb134924f7daa4a287027a3c1a9dd03
Unapplied parent: b872aac4fbd6c0fd84a9db7d5825f0a8fe545ed1

New changelog entries:
  * d/p/smp-startup-error.patch: fix startup error in SMP mode, when workers
    is set. (LP: #1815852)
  * d/squid.tmpfile: add tmpfiles configuration to handle /var/run/squid
    at boot. Thanks to Luigi Gangitano <luigi@debian.org> (LP: #1816006)

Author: Andreas Hasenack
Author Date: 2019-02-28 16:27:11 UTC

Import patches-unapplied version 4.1-1ubuntu3.1 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Upload parent: f1951cfb58184a00ba197bfb2a41973d7d4cac8c

Author: Andreas Hasenack
Author Date: 2019-02-28 16:27:11 UTC

Import patches-unapplied version 4.1-1ubuntu3.1 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Upload parent: f1951cfb58184a00ba197bfb2a41973d7d4cac8c

Author: Andreas Hasenack
Author Date: 2019-02-27 11:54:45 UTC

Import patches-applied version 4.4-1ubuntu2 to applied/ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 68581aedf7356f02018593eefd0723d9829d9db9
Unapplied parent: 41f84fb07d103e49e1c7d3df6f1dbe55ed70ec65

New changelog entries:
  * d/squid.tmpfile: add tmpfiles configuration to handle /var/run/squid
    at boot. Thanks to Luigi Gangitano <luigi@debian.org> (LP: #1816006)

Author: Andreas Hasenack
Author Date: 2019-02-27 11:54:45 UTC

Import patches-applied version 4.4-1ubuntu2 to applied/ubuntu/disco-proposed

Imported using git-ubuntu import.

Changelog parent: 68581aedf7356f02018593eefd0723d9829d9db9
Unapplied parent: 41f84fb07d103e49e1c7d3df6f1dbe55ed70ec65

New changelog entries:
  * d/squid.tmpfile: add tmpfiles configuration to handle /var/run/squid
    at boot. Thanks to Luigi Gangitano <luigi@debian.org> (LP: #1816006)

Author: Andreas Hasenack
Author Date: 2019-02-27 11:54:45 UTC

Import patches-unapplied version 4.4-1ubuntu2 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Upload parent: 29ebe2c8c0c52700b2ec697e9b6df0aecd4e09ab

Author: Andreas Hasenack
Author Date: 2019-02-27 11:54:45 UTC

Import patches-unapplied version 4.4-1ubuntu2 to ubuntu/disco-proposed

Imported using git-ubuntu import.

Upload parent: 29ebe2c8c0c52700b2ec697e9b6df0aecd4e09ab

Author: Andreas Hasenack
Author Date: 2018-10-09 17:00:36 UTC

Import patches-unapplied version 4.1-1ubuntu3 to ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Upload parent: 8b6a19d070c196150124af2d36457bcb97591315

Author: Andreas Hasenack
Author Date: 2018-10-09 17:00:36 UTC

Import patches-applied version 4.1-1ubuntu3 to applied/ubuntu/cosmic-proposed

Imported using git-ubuntu import.

Changelog parent: e0a6afb4c342ba3553454e05cee281a89c6151dc
Unapplied parent: 2f22ed5447981535f66cb9f17a0ec16f851f1eb9

New changelog entries:
  * d/p/fix-rotate-assertion.patch: Fix assertion error when rotating logs.
    Thanks to Vitaly Lavrov <vel21ripn@gmail.com>. (LP: #1794553)

Author: Luigi Gangitano
Author Date: 2018-04-30 13:37:15 UTC

Import patches-applied version 4.0.24-1~exp16 to applied/debian/experimental

Imported using git-ubuntu import.

Changelog parent: a325095b766691fa2c910ec575f65493bc4e3056
Unapplied parent: 5b989d873b65adbc1b24375ee22cbabd89962d77

New changelog entries:
  * debian/{control,rules}
    - Build with TLS support from gnutls (Closes: #641944, #811014)

Author: Luigi Gangitano
Author Date: 2018-04-30 13:37:15 UTC

Import patches-unapplied version 4.0.24-1~exp16 to debian/experimental

Imported using git-ubuntu import.

Changelog parent: 8c528979d1b92addc79fd93e056a1b5c709786a5

New changelog entries:
  * debian/{control,rules}
    - Build with TLS support from gnutls (Closes: #641944, #811014)

Author: Ubuntu Git Importer
Author Date: 2018-03-10 02:04:34 UTC

pristine-tar data for squid_2.7.STABLE9.orig.tar.gz

Author: Ubuntu Git Importer
Author Date: 2018-03-10 01:41:54 UTC

pristine-tar data for squid_4.0.23.orig.tar.gz

Author: Sebastien Delafond
Author Date: 2015-01-25 11:03:34 UTC

Import patches-unapplied version 2.7.STABLE9-4.1+deb7u1 to debian/wheezy

Imported using git-ubuntu import.

Changelog parent: c18f929115e03dbd06937038e0ed5fb9886e6cd6

New changelog entries:
  * Non-maintainer upload by the Security Team
  * Fix CVE-2014-3609 by backporting 3.0-based upstream patch

Author: Sebastien Delafond
Author Date: 2015-01-25 11:03:34 UTC

Import patches-applied version 2.7.STABLE9-4.1+deb7u1 to applied/debian/wheezy

Imported using git-ubuntu import.

Changelog parent: 32c9c8d4d24576055f247c053a548c3418a14c23
Unapplied parent: 902cacb3bc689d3cd8038109feaf51f187be077a

New changelog entries:
  * Non-maintainer upload by the Security Team
  * Fix CVE-2014-3609 by backporting 3.0-based upstream patch

Author: Seth Arnold
Author Date: 2013-01-30 02:12:23 UTC

Import patches-unapplied version 2.7.STABLE7-1ubuntu12.6 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: b5c14dbb841805cb4b4d4fe3dcb2ead19b0e379e

New changelog entries:
  * SECURITY UPDATE: denial of service via cachemgr.cgi insufficient input
    validation
    - debian/patches/98-CVE-2012-5643.dpatch: modify cachemgr.cc to properly
      free memory and handle input in chunks
    - Based on
      http://www.squid-cache.org/Versions/v2/2.7/changesets/SQUID-2012_1.patch
    - CVE-2012-5643
    - CVE-2013-0189

Author: Seth Arnold
Author Date: 2013-01-30 02:12:23 UTC

Import patches-applied version 2.7.STABLE7-1ubuntu12.6 to applied/ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: d06ef2b7edee4b5b368031c7a5e9f1716edbd68a
Unapplied parent: 92aaa85a6c79202556b2a7d81274d3fb75aada9d

New changelog entries:
  * SECURITY UPDATE: denial of service via cachemgr.cgi insufficient input
    validation
    - debian/patches/98-CVE-2012-5643.dpatch: modify cachemgr.cc to properly
      free memory and handle input in chunks
    - Based on
      http://www.squid-cache.org/Versions/v2/2.7/changesets/SQUID-2012_1.patch
    - CVE-2012-5643
    - CVE-2013-0189

Author: Seth Arnold
Author Date: 2013-01-30 02:12:23 UTC

Import patches-applied version 2.7.STABLE7-1ubuntu12.6 to applied/ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: d06ef2b7edee4b5b368031c7a5e9f1716edbd68a
Unapplied parent: 92aaa85a6c79202556b2a7d81274d3fb75aada9d

New changelog entries:
  * SECURITY UPDATE: denial of service via cachemgr.cgi insufficient input
    validation
    - debian/patches/98-CVE-2012-5643.dpatch: modify cachemgr.cc to properly
      free memory and handle input in chunks
    - Based on
      http://www.squid-cache.org/Versions/v2/2.7/changesets/SQUID-2012_1.patch
    - CVE-2012-5643
    - CVE-2013-0189

Author: Seth Arnold
Author Date: 2013-01-30 02:12:23 UTC

Import patches-unapplied version 2.7.STABLE7-1ubuntu12.6 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: b5c14dbb841805cb4b4d4fe3dcb2ead19b0e379e

New changelog entries:
  * SECURITY UPDATE: denial of service via cachemgr.cgi insufficient input
    validation
    - debian/patches/98-CVE-2012-5643.dpatch: modify cachemgr.cc to properly
      free memory and handle input in chunks
    - Based on
      http://www.squid-cache.org/Versions/v2/2.7/changesets/SQUID-2012_1.patch
    - CVE-2012-5643
    - CVE-2013-0189

Author: Seth Arnold
Author Date: 2013-01-30 02:12:23 UTC

Import patches-unapplied version 2.7.STABLE7-1ubuntu12.6 to ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: b5c14dbb841805cb4b4d4fe3dcb2ead19b0e379e

New changelog entries:
  * SECURITY UPDATE: denial of service via cachemgr.cgi insufficient input
    validation
    - debian/patches/98-CVE-2012-5643.dpatch: modify cachemgr.cc to properly
      free memory and handle input in chunks
    - Based on
      http://www.squid-cache.org/Versions/v2/2.7/changesets/SQUID-2012_1.patch
    - CVE-2012-5643
    - CVE-2013-0189

Author: Seth Arnold
Author Date: 2013-01-30 02:12:23 UTC

Import patches-applied version 2.7.STABLE7-1ubuntu12.6 to applied/ubuntu/lucid-security

Imported using git-ubuntu import.

Changelog parent: d06ef2b7edee4b5b368031c7a5e9f1716edbd68a
Unapplied parent: 92aaa85a6c79202556b2a7d81274d3fb75aada9d

New changelog entries:
  * SECURITY UPDATE: denial of service via cachemgr.cgi insufficient input
    validation
    - debian/patches/98-CVE-2012-5643.dpatch: modify cachemgr.cc to properly
      free memory and handle input in chunks
    - Based on
      http://www.squid-cache.org/Versions/v2/2.7/changesets/SQUID-2012_1.patch
    - CVE-2012-5643
    - CVE-2013-0189

Author: Christian Perrier
Author Date: 2012-01-28 15:18:52 UTC

Import patches-unapplied version 2.7.STABLE9-4.1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 1e5ad71728598560862e7987cd10d3c9b3d32abc

New changelog entries:
  * Non-maintainer upload.
  * Fix pending l10n issues. Debconf translations:
    - Danish (Joe Hansen). Closes: #621345
    - Indonesian (Mahyuddin Susanto). Closes: #656576
    - Polish (Michał Kułach). Closes: #657300
    - Brazilian Portuguese (Adriano Rafael Gomes). Closes: #657454

Author: Christian Perrier
Author Date: 2012-01-28 15:18:52 UTC

Import patches-applied version 2.7.STABLE9-4.1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: ce25271c5cd5d9959fc5e25178b15c8cdc6b0f3a
Unapplied parent: c18f929115e03dbd06937038e0ed5fb9886e6cd6

New changelog entries:
  * Non-maintainer upload.
  * Fix pending l10n issues. Debconf translations:
    - Danish (Joe Hansen). Closes: #621345
    - Indonesian (Mahyuddin Susanto). Closes: #656576
    - Polish (Michał Kułach). Closes: #657300
    - Brazilian Portuguese (Adriano Rafael Gomes). Closes: #657454

Author: Clint Byrum
Author Date: 2011-12-09 18:40:09 UTC

Import patches-applied version 2.7.STABLE7-1ubuntu12.5 to applied/ubuntu/lucid-proposed

Imported using git-ubuntu import.

Changelog parent: 3e34d0edca8b4ab00f8961c449869c2341920d44
Unapplied parent: b5c14dbb841805cb4b4d4fe3dcb2ead19b0e379e

New changelog entries:
  * Simplify postinst script and use invoke-rc.d per policy. Also use
    stop/start to make sure new job file is reloaded. (LP: #726348).

Author: Clint Byrum
Author Date: 2011-12-09 18:40:09 UTC

Import patches-unapplied version 2.7.STABLE7-1ubuntu12.5 to ubuntu/lucid-proposed

Imported using git-ubuntu import.

Changelog parent: be2d0f0f704b410ac6d39a5530a660d654ea3817

New changelog entries:
  * Simplify postinst script and use invoke-rc.d per policy. Also use
    stop/start to make sure new job file is reloaded. (LP: #726348).

Author: Ben Howard
Author Date: 2011-09-19 21:41:47 UTC

Import patches-applied version 2.7.STABLE9-4ubuntu4 to applied/ubuntu/oneiric

Imported using git-ubuntu import.

Changelog parent: 78595b9c04ae0d6b4ea65768c4a41315e144b751
Unapplied parent: 664af42db63930422d4eef5be32d2dcc28b4ad72

New changelog entries:
  * debian/squid.upstart:
    - Revert "start after network and local file systems" as a regression
      to (LP: #561779). (LP: #831628)

Author: Ben Howard
Author Date: 2011-09-19 21:41:47 UTC

Import patches-unapplied version 2.7.STABLE9-4ubuntu4 to ubuntu/oneiric

Imported using git-ubuntu import.

Changelog parent: 1be387f4d5101dc39f4774e0068f8f9a418ba54d

New changelog entries:
  * debian/squid.upstart:
    - Revert "start after network and local file systems" as a regression
      to (LP: #561779). (LP: #831628)

Author: Ben Howard
Author Date: 2011-09-19 21:41:47 UTC

Import patches-unapplied version 2.7.STABLE9-4ubuntu4 to ubuntu/oneiric

Imported using git-ubuntu import.

Changelog parent: 1be387f4d5101dc39f4774e0068f8f9a418ba54d

New changelog entries:
  * debian/squid.upstart:
    - Revert "start after network and local file systems" as a regression
      to (LP: #561779). (LP: #831628)

Author: Ben Howard
Author Date: 2011-09-19 21:41:47 UTC

Import patches-unapplied version 2.7.STABLE9-4ubuntu4 to ubuntu/oneiric

Imported using git-ubuntu import.

Changelog parent: 1be387f4d5101dc39f4774e0068f8f9a418ba54d

New changelog entries:
  * debian/squid.upstart:
    - Revert "start after network and local file systems" as a regression
      to (LP: #561779). (LP: #831628)

Author: Ben Howard
Author Date: 2011-09-19 21:41:47 UTC

Import patches-unapplied version 2.7.STABLE9-4ubuntu4 to ubuntu/oneiric

Imported using git-ubuntu import.

Changelog parent: 1be387f4d5101dc39f4774e0068f8f9a418ba54d

New changelog entries:
  * debian/squid.upstart:
    - Revert "start after network and local file systems" as a regression
      to (LP: #561779). (LP: #831628)

Author: Ben Howard
Author Date: 2011-09-19 21:41:47 UTC

Import patches-applied version 2.7.STABLE9-4ubuntu4 to applied/ubuntu/oneiric

Imported using git-ubuntu import.

Changelog parent: 78595b9c04ae0d6b4ea65768c4a41315e144b751
Unapplied parent: 664af42db63930422d4eef5be32d2dcc28b4ad72

New changelog entries:
  * debian/squid.upstart:
    - Revert "start after network and local file systems" as a regression
      to (LP: #561779). (LP: #831628)

Author: Ben Howard
Author Date: 2011-09-19 21:41:47 UTC

Import patches-applied version 2.7.STABLE9-4ubuntu4 to applied/ubuntu/oneiric

Imported using git-ubuntu import.

Changelog parent: 78595b9c04ae0d6b4ea65768c4a41315e144b751
Unapplied parent: 664af42db63930422d4eef5be32d2dcc28b4ad72

New changelog entries:
  * debian/squid.upstart:
    - Revert "start after network and local file systems" as a regression
      to (LP: #561779). (LP: #831628)

Author: Ben Howard
Author Date: 2011-09-19 21:41:47 UTC

Import patches-applied version 2.7.STABLE9-4ubuntu4 to applied/ubuntu/oneiric

Imported using git-ubuntu import.

Changelog parent: 78595b9c04ae0d6b4ea65768c4a41315e144b751
Unapplied parent: 664af42db63930422d4eef5be32d2dcc28b4ad72

New changelog entries:
  * debian/squid.upstart:
    - Revert "start after network and local file systems" as a regression
      to (LP: #561779). (LP: #831628)

Author: Clint Byrum
Author Date: 2011-08-27 09:21:34 UTC

Import patches-unapplied version 2.7.STABLE9-2ubuntu5.2 to ubuntu/maverick-proposed

Imported using git-ubuntu import.

Changelog parent: cf197011828112647961f406f721ad45f52db10d

New changelog entries:
  * d/squid.upstart: start on was not sufficient to restart squid
    on transition from runlevel 1 to 2 (LP: #561779). Also stop on
    condition was not sufficient to stop squid because of a missing
    space. (LP: #750371)

Author: Clint Byrum
Author Date: 2011-08-27 09:21:34 UTC

Import patches-unapplied version 2.7.STABLE9-2ubuntu5.2 to ubuntu/maverick-proposed

Imported using git-ubuntu import.

Changelog parent: cf197011828112647961f406f721ad45f52db10d

New changelog entries:
  * d/squid.upstart: start on was not sufficient to restart squid
    on transition from runlevel 1 to 2 (LP: #561779). Also stop on
    condition was not sufficient to stop squid because of a missing
    space. (LP: #750371)

Author: Clint Byrum
Author Date: 2011-08-27 09:21:34 UTC

Import patches-unapplied version 2.7.STABLE9-2ubuntu5.2 to ubuntu/maverick-proposed

Imported using git-ubuntu import.

Changelog parent: cf197011828112647961f406f721ad45f52db10d

New changelog entries:
  * d/squid.upstart: start on was not sufficient to restart squid
    on transition from runlevel 1 to 2 (LP: #561779). Also stop on
    condition was not sufficient to stop squid because of a missing
    space. (LP: #750371)

Author: Clint Byrum
Author Date: 2011-08-27 09:21:34 UTC

Import patches-applied version 2.7.STABLE9-2ubuntu5.2 to applied/ubuntu/maverick-proposed

Imported using git-ubuntu import.

Changelog parent: 9ad60f521f6aaec5eefeb7020670cdf677702816
Unapplied parent: 8b2b1315987bd3c5e4551da53238e037623c4699

New changelog entries:
  * d/squid.upstart: start on was not sufficient to restart squid
    on transition from runlevel 1 to 2 (LP: #561779). Also stop on
    condition was not sufficient to stop squid because of a missing
    space. (LP: #750371)

Author: Clint Byrum
Author Date: 2011-08-27 09:21:34 UTC

Import patches-applied version 2.7.STABLE9-2ubuntu5.2 to applied/ubuntu/maverick-proposed

Imported using git-ubuntu import.

Changelog parent: 9ad60f521f6aaec5eefeb7020670cdf677702816
Unapplied parent: 8b2b1315987bd3c5e4551da53238e037623c4699

New changelog entries:
  * d/squid.upstart: start on was not sufficient to restart squid
    on transition from runlevel 1 to 2 (LP: #561779). Also stop on
    condition was not sufficient to stop squid because of a missing
    space. (LP: #750371)

Author: Clint Byrum
Author Date: 2011-08-27 09:21:34 UTC

Import patches-applied version 2.7.STABLE9-2ubuntu5.2 to applied/ubuntu/maverick-proposed

Imported using git-ubuntu import.

Changelog parent: 9ad60f521f6aaec5eefeb7020670cdf677702816
Unapplied parent: 8b2b1315987bd3c5e4551da53238e037623c4699

New changelog entries:
  * d/squid.upstart: start on was not sufficient to restart squid
    on transition from runlevel 1 to 2 (LP: #561779). Also stop on
    condition was not sufficient to stop squid because of a missing
    space. (LP: #750371)

Author: Clint Byrum
Author Date: 2011-04-01 20:59:06 UTC

Import patches-unapplied version 2.7.STABLE9-2.1ubuntu6 to ubuntu/natty

Imported using git-ubuntu import.

Changelog parent: 945ad97899cc062054367df1c875161f284e5c2d

New changelog entries:
  * debian/squid.upstart: start on changed to start on transition to
    runlevel 2 (LP: #561779)
  * debian/squid.upstart: SQUID_ARGS default value set to -D so DNS
    checks are not performed at startup (LP: #561750)

Author: Clint Byrum
Author Date: 2011-04-01 20:59:06 UTC

Import patches-applied version 2.7.STABLE9-2.1ubuntu6 to applied/ubuntu/natty

Imported using git-ubuntu import.

Changelog parent: 8287fb3ebe05c066989e0255157313a693007022
Unapplied parent: 1e7c3af299a1cfddf878be956d7aec917a0e3a10

New changelog entries:
  * debian/squid.upstart: start on changed to start on transition to
    runlevel 2 (LP: #561779)
  * debian/squid.upstart: SQUID_ARGS default value set to -D so DNS
    checks are not performed at startup (LP: #561750)

Author: Clint Byrum
Author Date: 2011-04-01 20:59:06 UTC

Import patches-applied version 2.7.STABLE9-2.1ubuntu6 to applied/ubuntu/natty

Imported using git-ubuntu import.

Changelog parent: 8287fb3ebe05c066989e0255157313a693007022
Unapplied parent: 1e7c3af299a1cfddf878be956d7aec917a0e3a10

New changelog entries:
  * debian/squid.upstart: start on changed to start on transition to
    runlevel 2 (LP: #561779)
  * debian/squid.upstart: SQUID_ARGS default value set to -D so DNS
    checks are not performed at startup (LP: #561750)

Author: Clint Byrum
Author Date: 2011-04-01 20:59:06 UTC

Import patches-unapplied version 2.7.STABLE9-2.1ubuntu6 to ubuntu/natty

Imported using git-ubuntu import.

Changelog parent: 945ad97899cc062054367df1c875161f284e5c2d

New changelog entries:
  * debian/squid.upstart: start on changed to start on transition to
    runlevel 2 (LP: #561779)
  * debian/squid.upstart: SQUID_ARGS default value set to -D so DNS
    checks are not performed at startup (LP: #561750)

Author: Luigi Gangitano
Author Date: 2010-01-14 22:10:06 UTC

Import patches-unapplied version 2.7.STABLE3-4.1lenny1 to debian/lenny

Imported using git-ubuntu import.

Changelog parent: df6446793f0f72c532b044d4140c49da7a318e8c

New changelog entries:
  * Urgency high due to security fixes
  * debian/patches/71-CVE-2009-2855
    - Fix DoS vuln (Ref: CVE-2009-2855)(Closes: #534982)
  [Steffen Joeris]
  * Fix denial of service via invalid DNS header-only packets
    Fixes: CVE-2010-0308

Author: Luigi Gangitano
Author Date: 2010-01-14 22:10:06 UTC

Import patches-applied version 2.7.STABLE3-4.1lenny1 to applied/debian/lenny

Imported using git-ubuntu import.

Changelog parent: 5a03dfb8f6f6d023461fffa0f8493a8423a18edb
Unapplied parent: 262373bf8a825afedd4af206f37fa3aa1bfc5315

New changelog entries:
  * Urgency high due to security fixes
  * debian/patches/71-CVE-2009-2855
    - Fix DoS vuln (Ref: CVE-2009-2855)(Closes: #534982)
  [Steffen Joeris]
  * Fix denial of service via invalid DNS header-only packets
    Fixes: CVE-2010-0308

Author: C de-Avillez
Author Date: 2010-09-27 17:27:09 UTC

Import patches-unapplied version 2.7.STABLE9-2ubuntu5 to ubuntu/maverick

Imported using git-ubuntu import.

Changelog parent: cee989be92f95d57cc238c38f07775066c1c7ca8

New changelog entries:
  * debian/squid.upstart: correct 'local-filesystem' to 'local-filesystems'.
    Missing 's' at the end causes squid to fail to start on boot.

Author: C de-Avillez
Author Date: 2010-09-27 17:27:09 UTC

Import patches-applied version 2.7.STABLE9-2ubuntu5 to applied/ubuntu/maverick

Imported using git-ubuntu import.

Changelog parent: 6f27ef8aeec1b211d8523c45a01152422c43113a
Unapplied parent: 3bdd648ff0a0fb536fdaa60f2e17728ab034a10c

New changelog entries:
  * debian/squid.upstart: correct 'local-filesystem' to 'local-filesystems'.
    Missing 's' at the end causes squid to fail to start on boot.

Author: Martijn van Brummelen
Author Date: 2010-09-17 07:30:06 UTC

Import patches-applied version 2.7.STABLE9-2.1 to applied/debian/sid

Imported using git-ubuntu import.

Changelog parent: 38e953f7fc2fc83b5a9ded50def58947a8825f10
Unapplied parent: 0cdc6d6870e72336471936a80eaff0524239753c

New changelog entries:
  * Non-maintainer upload.
  * Fixed typo Package to Packages thanks to Petter Reinholdtsen in
    01-cf.data.debian.dpatch (Closes: #591839).

Author: Martijn van Brummelen
Author Date: 2010-09-17 07:30:06 UTC

Import patches-unapplied version 2.7.STABLE9-2.1 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 717c66750fc6570eceb4e960e48135e87a55c612

New changelog entries:
  * Non-maintainer upload.
  * Fixed typo Package to Packages thanks to Petter Reinholdtsen in
    01-cf.data.debian.dpatch (Closes: #591839).

Author: Chuck Short
Author Date: 2010-04-16 13:00:19 UTC

Import patches-applied version 2.7.STABLE7-1ubuntu12 to applied/ubuntu/lucid

Imported using git-ubuntu import.

Changelog parent: 1583ac1f6e5965a2adf8b141371031854859f317
Unapplied parent: 9c8c100b3937bb2cf2d509c7a9e990b4a3ef686d

New changelog entries:
  * debian/squid.upstart, debian/rules, postrm, postinst: Fixed up postinstallation
    (LP: # 552360)

Author: Chuck Short
Author Date: 2010-04-16 13:00:19 UTC

Import patches-unapplied version 2.7.STABLE7-1ubuntu12 to ubuntu/lucid

Imported using git-ubuntu import.

Changelog parent: 9d7a6d96e45342b2a3f503e8421735e8604c3fa5

New changelog entries:
  * debian/squid.upstart, debian/rules, postrm, postinst: Fixed up postinstallation
    (LP: # 552360)

Author: Marc Deslauriers
Author Date: 2010-02-22 20:15:39 UTC

Import patches-applied version 2.7.STABLE3-4.1ubuntu1.2 to applied/ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: 105755d968258be3ce7a5b5ebb22628985abaf9f
Unapplied parent: fce60c2908e22782a0802f3b584fc3353ce3a1d9

New changelog entries:
  * SECURITY UPDATE: denial of service via crafted packets to HTCP port
    - debian/patches/73-CVE-2010-0639.dpatch: make sure s->request is
      valid in src/htcp.c.
    - CVE-2010-0639

Author: Marc Deslauriers
Author Date: 2010-02-22 20:15:39 UTC

Import patches-applied version 2.7.STABLE3-4.1ubuntu1.2 to applied/ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: 105755d968258be3ce7a5b5ebb22628985abaf9f
Unapplied parent: fce60c2908e22782a0802f3b584fc3353ce3a1d9

New changelog entries:
  * SECURITY UPDATE: denial of service via crafted packets to HTCP port
    - debian/patches/73-CVE-2010-0639.dpatch: make sure s->request is
      valid in src/htcp.c.
    - CVE-2010-0639

Author: Marc Deslauriers
Author Date: 2010-02-22 20:15:39 UTC

Import patches-applied version 2.7.STABLE3-4.1ubuntu1.2 to applied/ubuntu/jaunty-security

Imported using git-ubuntu import.

Changelog parent: 105755d968258be3ce7a5b5ebb22628985abaf9f
Unapplied parent: fce60c2908e22782a0802f3b584fc3353ce3a1d9

New changelog entries:
  * SECURITY UPDATE: denial of service via crafted packets to HTCP port
    - debian/patches/73-CVE-2010-0639.dpatch: make sure s->request is
      valid in src/htcp.c.
    - CVE-2010-0639

Author: Marc Deslauriers
Author Date: 2010-02-22 20:08:51 UTC

Import patches-applied version 2.7.STABLE6-2ubuntu2.2 to applied/ubuntu/karmic-security

Imported using git-ubuntu import.

Changelog parent: 9984c28714b57df493241338543156edc7e90d50
Unapplied parent: 86ecccf43c06061f3b763fba26c002fe85174f12

New changelog entries:
  * SECURITY UPDATE: denial of service via crafted packets to HTCP port
    - debian/patches/10_CVE-2010-0639.dpatch: make sure s->request is
      valid in src/htcp.c.
    - CVE-2010-0639

Author: Marc Deslauriers
Author Date: 2010-02-22 20:08:51 UTC

Import patches-applied version 2.7.STABLE6-2ubuntu2.2 to applied/ubuntu/karmic-security

Imported using git-ubuntu import.

Changelog parent: 9984c28714b57df493241338543156edc7e90d50
Unapplied parent: 86ecccf43c06061f3b763fba26c002fe85174f12

New changelog entries:
  * SECURITY UPDATE: denial of service via crafted packets to HTCP port
    - debian/patches/10_CVE-2010-0639.dpatch: make sure s->request is
      valid in src/htcp.c.
    - CVE-2010-0639

Author: Marc Deslauriers
Author Date: 2010-02-22 20:08:51 UTC

Import patches-applied version 2.7.STABLE6-2ubuntu2.2 to applied/ubuntu/karmic-security

Imported using git-ubuntu import.

Changelog parent: 9984c28714b57df493241338543156edc7e90d50
Unapplied parent: 86ecccf43c06061f3b763fba26c002fe85174f12

New changelog entries:
  * SECURITY UPDATE: denial of service via crafted packets to HTCP port
    - debian/patches/10_CVE-2010-0639.dpatch: make sure s->request is
      valid in src/htcp.c.
    - CVE-2010-0639

Author: Marc Deslauriers
Author Date: 2010-02-22 20:16:56 UTC

Import patches-applied version 2.7.STABLE3-1ubuntu2.3 to applied/ubuntu/intrepid-security

Imported using git-ubuntu import.

Changelog parent: 58b34504cc34db69b79725553f83c1ad7279a036
Unapplied parent: e3ef9c9d16acedaf7dfe3ab95e7c2d34c49f561b

New changelog entries:
  * SECURITY UPDATE: denial of service via crafted packets to HTCP port
    - debian/patches/10-CVE-2010-0639.dpatch: make sure s->request is
      valid in src/htcp.c.
    - CVE-2010-0639

Author: Marc Deslauriers
Author Date: 2010-02-22 20:16:56 UTC

Import patches-applied version 2.7.STABLE3-1ubuntu2.3 to applied/ubuntu/intrepid-security

Imported using git-ubuntu import.

Changelog parent: 58b34504cc34db69b79725553f83c1ad7279a036
Unapplied parent: e3ef9c9d16acedaf7dfe3ab95e7c2d34c49f561b

New changelog entries:
  * SECURITY UPDATE: denial of service via crafted packets to HTCP port
    - debian/patches/10-CVE-2010-0639.dpatch: make sure s->request is
      valid in src/htcp.c.
    - CVE-2010-0639

Author: Marc Deslauriers
Author Date: 2010-02-22 20:16:56 UTC

Import patches-applied version 2.7.STABLE3-1ubuntu2.3 to applied/ubuntu/intrepid-security

Imported using git-ubuntu import.

Changelog parent: 58b34504cc34db69b79725553f83c1ad7279a036
Unapplied parent: e3ef9c9d16acedaf7dfe3ab95e7c2d34c49f561b

New changelog entries:
  * SECURITY UPDATE: denial of service via crafted packets to HTCP port
    - debian/patches/10-CVE-2010-0639.dpatch: make sure s->request is
      valid in src/htcp.c.
    - CVE-2010-0639

Author: Marc Deslauriers
Author Date: 2010-02-22 20:18:23 UTC

Import patches-applied version 2.6.18-1ubuntu3.2 to applied/ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: 69a6d1cd34cf2c30c34edb0699ff8f9eeee842ac
Unapplied parent: 1d8307d4a3d85e47cb200a4b49e0bd395953beab

New changelog entries:
  * SECURITY UPDATE: denial of service via crafted packets to HTCP port
    - debian/patches/09-CVE-2010-0639.dpatch: make sure s->request is
      valid in src/htcp.c.
    - CVE-2010-0639

Author: Marc Deslauriers
Author Date: 2010-02-22 20:18:23 UTC

Import patches-applied version 2.6.18-1ubuntu3.2 to applied/ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: 69a6d1cd34cf2c30c34edb0699ff8f9eeee842ac
Unapplied parent: 1d8307d4a3d85e47cb200a4b49e0bd395953beab

New changelog entries:
  * SECURITY UPDATE: denial of service via crafted packets to HTCP port
    - debian/patches/09-CVE-2010-0639.dpatch: make sure s->request is
      valid in src/htcp.c.
    - CVE-2010-0639

Author: Marc Deslauriers
Author Date: 2010-02-22 20:18:23 UTC

Import patches-applied version 2.6.18-1ubuntu3.2 to applied/ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: 69a6d1cd34cf2c30c34edb0699ff8f9eeee842ac
Unapplied parent: 1d8307d4a3d85e47cb200a4b49e0bd395953beab

New changelog entries:
  * SECURITY UPDATE: denial of service via crafted packets to HTCP port
    - debian/patches/09-CVE-2010-0639.dpatch: make sure s->request is
      valid in src/htcp.c.
    - CVE-2010-0639

Author: Marc Deslauriers
Author Date: 2010-02-22 20:18:23 UTC

Import patches-unapplied version 2.6.18-1ubuntu3.2 to ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: fc7216ad18edebde834c410811b305fca952adb8

New changelog entries:
  * SECURITY UPDATE: denial of service via crafted packets to HTCP port
    - debian/patches/09-CVE-2010-0639.dpatch: make sure s->request is
      valid in src/htcp.c.
    - CVE-2010-0639

Author: Marc Deslauriers
Author Date: 2010-02-22 20:18:23 UTC

Import patches-unapplied version 2.6.18-1ubuntu3.2 to ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: fc7216ad18edebde834c410811b305fca952adb8

New changelog entries:
  * SECURITY UPDATE: denial of service via crafted packets to HTCP port
    - debian/patches/09-CVE-2010-0639.dpatch: make sure s->request is
      valid in src/htcp.c.
    - CVE-2010-0639

Author: Marc Deslauriers
Author Date: 2010-02-22 20:18:23 UTC

Import patches-unapplied version 2.6.18-1ubuntu3.2 to ubuntu/hardy-security

Imported using git-ubuntu import.

Changelog parent: fc7216ad18edebde834c410811b305fca952adb8

New changelog entries:
  * SECURITY UPDATE: denial of service via crafted packets to HTCP port
    - debian/patches/09-CVE-2010-0639.dpatch: make sure s->request is
      valid in src/htcp.c.
    - CVE-2010-0639

Author: Marc Deslauriers
Author Date: 2010-02-22 20:16:56 UTC

Import patches-unapplied version 2.7.STABLE3-1ubuntu2.3 to ubuntu/intrepid-security

Imported using git-ubuntu import.

Changelog parent: f0878b431f3cdc54db0dd572e4be23951f575ba9

New changelog entries:
  * SECURITY UPDATE: denial of service via crafted packets to HTCP port
    - debian/patches/10-CVE-2010-0639.dpatch: make sure s->request is
      valid in src/htcp.c.
    - CVE-2010-0639