ubuntu/+source/squid3:applied/ubuntu/xenial-devel

Last commit made on 2020-02-20
Get this branch:
git clone -b applied/ubuntu/xenial-devel https://git.launchpad.net/ubuntu/+source/squid3
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
applied/ubuntu/xenial-devel
Repository:
lp:ubuntu/+source/squid3

Recent commits

4c93a11... by Marc Deslauriers on 2020-02-19

Import patches-applied version 3.5.12-1ubuntu7.10 to applied/ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 9ee5a4c0f68ba4676623b7340cc898d90d5e4220
Unapplied parent: dc0f293f0a3968848fc951bfe4d7c1bc0a487ef7

New changelog entries:
  * SECURITY UPDATE: info disclosure via FTP server
    - debian/patches/CVE-2019-12528.patch: fix FTP buffers handling in
      src/clients/FtpGateway.cc.
    - CVE-2019-12528
  * SECURITY UPDATE: incorrect input validation and buffer management
    - debian/patches/CVE-2020-84xx-1.patch: ignore malformed Host header in
      intercept and reverse proxy mode in src/client_side.cc.
    - debian/patches/CVE-2020-84xx-2.patch: fix request URL generation in
      reverse proxy configurations in src/client_side.cc.
    - debian/patches/CVE-2020-84xx-3.patch: fix security patch in
      src/client_side.cc.
    - CVE-2020-8449
    - CVE-2020-8450
  * SECURITY UPDATE: DoS in NTLM authentication
    - debian/patches/CVE-2020-8517.patch: improved username handling in
      helpers/external_acl/LM_group/ext_lm_group_acl.cc.
    - CVE-2020-8517

dc0f293... by Marc Deslauriers on 2020-02-19

CVE-2020-8517.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2020-8517.patch.

f459e0b... by Marc Deslauriers on 2020-02-19

CVE-2020-84xx-3.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2020-84xx-3.patch.

cca0fe3... by Marc Deslauriers on 2020-02-19

CVE-2020-84xx-2.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2020-84xx-2.patch.

b1b02a9... by Marc Deslauriers on 2020-02-19

CVE-2020-84xx-1.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2020-84xx-1.patch.

977cd1e... by Marc Deslauriers on 2020-02-19

CVE-2019-12528.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2019-12528.patch.

7f1d764... by Marc Deslauriers on 2020-02-19

CVE-2019-18678.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2019-18678.patch.

7c4d917... by Marc Deslauriers on 2020-02-19

CVE-2019-18677.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2019-18677.patch.

6d367bf... by Marc Deslauriers on 2020-02-19

CVE-2019-12526.patch

No DEP3 Subject or Description header found

Gbp-Pq: CVE-2019-12526.patch.

10a694d... by Marc Deslauriers on 2020-02-19

[PATCH] Replace uudecode with libnettle base64 decoder (#406)

Gbp-Pq: CVE-2019-12529.patch.