ubuntu/+source/squid3:applied/ubuntu/bionic-updates

Last commit made on 2020-02-20
Get this branch:
git clone -b applied/ubuntu/bionic-updates https://git.launchpad.net/ubuntu/+source/squid3
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/bionic-updates
Repository:
lp:ubuntu/+source/squid3

Recent commits

b74947b... by Marc Deslauriers on 2020-02-19

Import patches-applied version 3.5.27-1ubuntu1.5 to applied/ubuntu/bionic-security

Imported using git-ubuntu import.

Changelog parent: e99f88e238e42f7d299a6391d4292f07b87f8690
Unapplied parent: d844e964b1190ddce7dd3ec2e159e633f1a954d4

New changelog entries:
  * SECURITY UPDATE: info disclosure via FTP server
    - debian/patches/CVE-2019-12528.patch: fix FTP buffers handling in
      src/clients/FtpGateway.cc.
    - CVE-2019-12528
  * SECURITY UPDATE: incorrect input validation and buffer management
    - debian/patches/CVE-2020-84xx-1.patch: ignore malformed Host header in
      intercept and reverse proxy mode in src/client_side.cc.
    - debian/patches/CVE-2020-84xx-2.patch: fix request URL generation in
      reverse proxy configurations in src/client_side.cc.
    - debian/patches/CVE-2020-84xx-3.patch: fix security patch in
      src/client_side.cc.
    - CVE-2020-8449
    - CVE-2020-8450
  * SECURITY UPDATE: DoS in NTLM authentication
    - debian/patches/CVE-2020-8517.patch: improved username handling in
      helpers/external_acl/LM_group/ext_lm_group_acl.cc.
    - CVE-2020-8517

d844e96... by Marc Deslauriers on 2020-02-19

CVE-2020-8517.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2020-8517.patch.

c3b3dbb... by Marc Deslauriers on 2020-02-19

CVE-2020-84xx-3.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2020-84xx-3.patch.

11ec279... by Marc Deslauriers on 2020-02-19

CVE-2020-84xx-2.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2020-84xx-2.patch.

c51c8fe... by Marc Deslauriers on 2020-02-19

CVE-2020-84xx-1.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2020-84xx-1.patch.

8a5ce5a... by Marc Deslauriers on 2020-02-19

CVE-2019-12528.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2019-12528.patch.

cfdd9b6... by Marc Deslauriers on 2020-02-19

CVE-2019-18678.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2019-18678.patch.

e98be73... by Marc Deslauriers on 2020-02-19

CVE-2019-18677.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2019-18677.patch.

8d9393d... by Marc Deslauriers on 2020-02-19

CVE-2019-12526.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2019-12526.patch.

84b68c8... by Marc Deslauriers on 2020-02-19

[PATCH] Replace uudecode with libnettle base64 decoder (#406)

Gbp-Pq: CVE-2019-12529.patch.