ubuntu/+source/squid:ubuntu/hoary

Last commit made on 2005-12-20
Get this branch:
git clone -b ubuntu/hoary https://git.launchpad.net/ubuntu/+source/squid
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/hoary
Repository:
lp:ubuntu/+source/squid

Recent commits

c9cb430... by Martin Pitt on 2005-03-08

Import patches-unapplied version 2.5.8-3ubuntu1 to ubuntu/hoary

Imported using git-ubuntu import.

Changelog parent: 6ee4ae76352c4b83aeff42f8ad1072c15fdf5b1c

New changelog entries:
  * SECURITY UPDATE: Fix cookie information disclosure.
  * Added debian/patches/37-setcookie.dpatch (upstream patch, taken from
    Debian package): Fix race condition of Set-Cookie headers when using the
    old Netscape protocol.
  * References:
    CAN-2005-0626
    http://www.squid-cache.org/Versions/v2/2.5/bugs/#squid-2.5.STABLE9-setcookie
  * Urgency high due security fixes
  * debian/patches/36-dns-assert.dpatch
    - Added upstream patch to fix DoS in DNS reply parsing
      (Ref: CAN-2005-0446)
  * debian/squid.rc
    - Added db_stop call before invoke-rc.d (Closes: #294866)
  * New upstream release
    - removed patches that have been integrated upstream:
      debian/patches/23-deny-internal-object-purge
      debian/patches/24-gopher-html-parsing
      debian/patches/25-wccp-dos
      debian/patches/26-dns-memleak
      debian/patches/27-ldap-spaces
      debian/patches/28-fakeauth-memleak
      debian/patches/29-fqdn-truncated
      debian/patches/31-wccp-buffer-overflow
      debian/patches/32-response-splitting
      debian/patches/33-header-parsing
      debian/patches/34-oversize-reply-header
      debian/patches/35-empty-acl
    - Fixed 100% CPU usage on half closed PUT/POST requests
      (Closes: #294551)
  * debian/squid.rc
    - Applied patch from Thomas Hood to improve initscript output
      (Closes: #294465)
  * Urgency high due security fixes, previous version not yet in sarge and
    this version makes just a litte change to dependencies

  * debian/control
    - Added versioned depends on the same version of squid-common
      (Closes: #293552, #293626)
  * Urgency high due security fixes
  * debian/patches/34-oversize-reply-header.dpatch
    - Added upstream patch to correct HTTP protocol mismatch introduced
      by the header-parsing patch
      (Ref: CAN-2005-0241)
  * debian/patches/35-empty-acl.dpatch
    - Added upstream patch to fix minor security issues with 'empty' acls
      (Ref: CAN-2005-0194)
  * Urgency high due security fixes
  * debian/patches/01-cf.data.pre
    - Explicitly set hosts_file to /etc/hosts (Closes: #185555)
  * debian/patches/31-wccp-buffer-overflow.dpatch
    - Added upstream patch that fixes BoF in WCCP recvfrom()
      (Ref: CAN-2005-0211)
  * debian/patches/32-response-splitting.dpatch
    - Added upstream patch that fixes HTTP response splitting cache pollution
      (Ref: CAN-2005-0175)
  * debian/patches/33-header-parsing.dpatch
    - Added upstream patch to reject malformed HTTP requests and responses
      (Ref: CAN-2005-0174)
  * Urgency high due security fixes
  * Updated references in changelog to CAN advisories
  * "A round of upstream patches" release
  * debian/patches/24-gopher-html-parsing
    - Added upstream patch that fixes BoF in gopherToHTML()
      (Ref: CAN-2005-0094)

  * debian/patches/25-wccp-dos
    - Added upstream patch that fixes DoS in WCCP message handling
      (Ref: CAN-2005-0095)
  * debian/patches/26-dns-memleak
    - Added upstream patch that fixes memory leak in internal DNS resolver
  * debian/patches/27-ldap-spaces
    - Added upstream patch that fixes minor security issues in LDAP account
      handling
      (Ref: CAN-2005-0173)
  * debian/patches/28-fakeauth-memleak
    - Added upstream patch that fixes memory leak in fakeauth NTLM helper
  * debian/patches/29-fqdn-truncated
    - Added upstream patch that fixes name truncation in compressed DNS
      responses
  * debian/patches/29-fqdn-truncated
    - Added patch to compile squid on AMD64 with GCC-4.0 (Closes: #288542)

  * debian/patches/07-manpage
    - Removed, since now the config file is in /etc/squid
      (Closes: #284791)
  * debian/patches/23-deny-internal-object-purge
    - Added upstream patch that fixes internal object expiry
      (Closes: #75468)
  * debian/po/de.po
    - Updated German debconf translation (thanks to Jens Nachtigall)
      (Closes: #283848)

  * debian/po/nl.po
    - Updated Dutch debconf translation (thanks to Luk Claes)
      (Closes: #281563)
  * debian/watch
    - Added debian watch file
  * debian/po/fr.po
    - Updated French debconf translation (thanks to Christian Perrier)
      (Closes: #279304)
  * debian/rules
    - Added wbinfo_group external acl (Closes: #280895)
  * Urgency medium due to security issues

  * New upstream release
    - removed patches that have been integrated upstream:
      debian/patches/17-head
      debian/patches/18-no-valid-dir
      debian/patches/19-heap-segfault
      debian/patches/20-ntlm-fetch-string
      debian/patches/21-ntlm-noreuse-leak

    - Fixes Denial of Service in SNMP asn_parse_header module
      (Ref: CAN-2004-0918)

  * debian/po/nl.po
    - Updated Dutch debconf translation (Thanks to Luk Claes)
      (Closes: #277763)
  * Urgency still medium due to RC bug fix in squid-cgi
  * debian/templates
    - Applied patch to fix typos (thanks to Jens Nachtingal)
      (Closes: #275524)

  * debian/po/de.po
    - Updated german debconf translation (thanks to Jens Nachtingall)
      (Closes: #275523)
  * debian/control
    - Fix versioned build-depend on dpatch to fix FTBFS on alpha and sparc
  * Urgency medium due to RC bug fix in squid-cgi
  * debian/patches/22-cachemgr-acl
    - Reworked code flow (thanks to Martin Schulze)
  * debian/cachemgr.conf
    - Added comments at the start (again, thanks to Martin Schulze)
  * debian/control
    - Add version to build-depend on dpatch to fix FTBFS on alpha and sparc
  * Urgency medium due to RC bug fix in squid-cgi
  * debian/patches/22-cachemgr-acl
    - Added config file (/etc/squid/cachemgr.conf) checking to cachemgr.cgi
      (Closes for sid/sarge: #133131)
      Ref: CAN-2004-0913

  * debian/cachemgr.conf
    - Added default configuration file for squid-cgi
  * debian/templates
    - Modified squid-cgi template with informations on the new config
      file format

  * debian/po/it.po
    - Updated italian debconf translation
  * Urgency medium due to DoS fix in ntlm_auth (this should really make it
    into sarge)
  * debian/po/fr.po
    Updated French translation (Closes: #267577)
  * debian/po/pt_BR.po
    Updated Brazilian Portuguese translation (Closes: #267187)
  * debian/patches/20-ntlm-fetch-string
    Added upstream patch that fixes DoS in ntlm authentication
    (http://www.squid-cache.org/bugs/show_bug.cgi?id=1045)
    Ref: CAN-2004-0832
  * debian/patches/21-ntlm-noreuse-leak
    Added upstream patch that fixes memory leak in ntlm authentication
    with challenge reuse disabled
  * I should have checked upstream patches before -6 upload
  * Still urgency medium because of grave bug and upcoming sarge freeze.
  * debian/patches/19-heap-segfault
    - Added upstream patches to fix segfaults with heap replacement policy
  * Urgency medium because of grave bug and upcoming sarge freeze.
  * debian/config
    - Fix access to config file if config file does not exist
      (Closes: #264595)
  * debian/patches/18-no-valid-dir
    - Added upstream patch to fix invalid store with ufs
  * debian/{templates,postinst,config,squid.rc}
    - Added debconf question asking user to confirm before changing
      owner/group of cache_dir (Closes: #259541)
    - Removed permission fix from rc script. Will check only on upgrades
      to avoid messing up filesystem when administrator selects wrong
      values for cache_dir (See #259541 for an example)
  * debian/squid.rc
    - Added support for CHUID in start-stop-daemon (Closes: #137122). Beware
      of /etc/squid/squid.conf permissions if you use it!
  * debian/po/it.po
    - Added italian debconf translation
  * debian/patches/17-head
    - Added upstream patch to fix stale informations returned on HEAD request
      (Closes: #222499)
  * debian/patches/09-enable-large-files
    - Re-enable upstream support for logfiles bigger than 2GB. If no side
      effect shows up in a short time I'll close the bug (229327).
  * debian/preinst
    - Removed warning for logfiles bigger than 2GB.
  * debian/control
    - Added dependency on coreutils to be abel to use /usr/bin/stat in postinst
  * debian/postinst
    - chown directories only if actual owernship doesn't match configfile
    (Closes: #259217)
  * New Upstream Release
    - removed patches that have been integrated upstream:
      debian/patches/16-range-offset-limit
      debian/patches/15-dns-localhost
      debian/patches/14-proxy-abuse
      debian/patches/13-ntlm-overflow
      debian/patches/12-post-assert
      debian/patches/11-digest-blank
      debian/patches/10-ntlm-assert
  * debian/patches/13-ntlm-overflow
    - Updated to officially released upstrem patch (Closes: #256666)

6ee4ae7... by Luigi Gangitano on 2004-06-18

Import patches-unapplied version 2.5.5-6 to ubuntu/warty

Imported using git-ubuntu import.