ubuntu/+source/squid3:debian/jessie

Last commit made on 2018-06-23
Get this branch:
git clone -b debian/jessie https://git.launchpad.net/ubuntu/+source/squid3
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
debian/jessie
Repository:
lp:ubuntu/+source/squid3

Recent commits

d7218d3... by Salvatore Bonaccorso on 2018-02-18

Import patches-unapplied version 3.4.8-6+deb8u5 to debian/jessie

Imported using git-ubuntu import.

Changelog parent: 3d69d84c22c9172da3d2f13455656bd8877824d1

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * ESI: make sure endofName never exceeds tagEnd (CVE-2018-1000024)
    (Closes: #888719)
  * Fix indirect IP logging for transactions without a client connection
    (CVE-2018-1000027) (Closes: #888720)

3d69d84... by Salvatore Bonaccorso on 2016-12-18

Import patches-unapplied version 3.4.8-6+deb8u4 to debian/jessie

Imported using git-ubuntu import.

Changelog parent: add0533497b7d59107c404ac24581379f1c1b7d5

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * Fix cache_peer login=PASS(THRU) after CVE-2015-5400.
    Thanks to Amos Jeffries <email address hidden> (Closes: #819563)
  * CVE-2016-10002: Information disclosure in HTTP Request processing
    (Closes: #848493)

add0533... by Santiago Ruano Rincón on 2016-05-13

Import patches-unapplied version 3.4.8-6+deb8u3 to debian/jessie

Imported using git-ubuntu import.

Changelog parent: 7197de29122a6ad5452cf94088991164d563befb

New changelog entries:
  * Non-maintainer upload.
  * Fix CVE-2016-4051: Buffer overflow in cachemgr.cgi.
  * Fix CVE-2016-4052: Multiple stack-based buffer overflows by wrongly
    handling Edge Side Includes (ESI) responses.
  * Fix CVE-2016-4053: Public information disclosure of the server stack
    layout when processing ESI responses.
  * Fix CVE-2016-4054: Remote code execution when processing ESI responses.
  * Fix CVE-2016-4553: Cache Poisoning issue in HTTP Request handling.
  * Fix CVE-2016-4554: Header Smuggling issue in HTTP Request processing.
  * Fix CVE-2016-4555 and CVE-2016-4556: Denial of Service when
    processing ESI responses.
  * debian/rules: include /usr/share/cdbs/1/rules/autoreconf.mk, needed by
    CVE-2016-4051 fix.
  * debian/control: Add Build-depend on dh-autoreconf

7197de2... by Salvatore Bonaccorso on 2016-03-20

Import patches-unapplied version 3.4.8-6+deb8u2 to debian/jessie

Imported using git-ubuntu import.

Changelog parent: b7dd978c7860e78c89319549c532b21003762939

New changelog entries:
  * Non-maintainer upload by the Security Team.
  * CVE-2016-2571: better handling of huge response headers in
    src/http.cc

b7dd978... by Luigi Gangitano on 2015-07-22

Import patches-unapplied version 3.4.8-6+deb8u1 to debian/jessie

Imported using git-ubuntu import.

Changelog parent: 5b5c609a56e20cfac4b83f0ad2f8797fb5519282

New changelog entries:
  [ Luigi Gangitano <email address hidden> ]
  * debian/patches/36-squid-3.4-13225.patch
    - Added upstream patch fixing Improper Protection of Alternate Path
      (Ref: SQUID-2015:2, CVE-2015-5400) (Closes: #793128)

5b5c609... by Luigi Gangitano on 2015-01-28

Import patches-unapplied version 3.4.8-6 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 54a29d43967baf8f9bffda72a00c4336953cb1ed

New changelog entries:
  [ Luigi Gangitano <email address hidden> ]
  * debian/patches/31-squid-3.4-13199.patch
    - Added upstream patch fixing excessive CPU usage (Closes: #776461)
  * debian/patches/32-squid-3.4-13210.patch
    - Added upstream patch fixing excessive CPU and memory usage in
      NTLM and Negotiate authentication helpers (Closes: #776463)
  * debian/patches/33-squid-3.4-13211.patch
    - Added upstream patch fixing a possible replay vulnerability on Digest
      authentication (Closes: #776464)
  * debian/patches/34-squid-3.4-13213.patch
    - Added upstream patch fixing incorrect security permissions for
      TOS/DiffServ packet marking (Closes: #776468)
  * debian/patches/35-squid-3.4-13203.patch
    - Added upstream patch fixing squidclient unable to connect to host with
      both IPv4 and IPv6 addresses (Closes: #742425)

54a29d4... by Luigi Gangitano on 2014-12-16

Import patches-unapplied version 3.4.8-5 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 2f28e061cf960a47fe9f507502485ee86d5ccdda

New changelog entries:
  [ Luigi Gangitano <email address hidden> ]
  * debian/squid3.{pre,post}inst
    - Moved ACL manager fix to postinst (Closes: #773032)

2f28e06... by Luigi Gangitano on 2014-12-05

Import patches-unapplied version 3.4.8-4 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 1b4dcd9e351b47fb81aa6d5e51e156ece02b2ca6

New changelog entries:
  [ Luigi Gangitano <email address hidden> ]
  * debian/squid3.preinst
    - Revert changes on abort-upgrade

1b4dcd9... by Luigi Gangitano on 2014-12-05

Import patches-unapplied version 3.4.8-3 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 0019fbd4362148c721dad6d1dc975e362c7313ed

New changelog entries:
  [ Amos Jeffries <email address hidden> ]
  * debian/squid3.preinst
    - Remove obsolete manager ACL definition from squid.conf
      when upgrading squid3 package (Closes: #768170)
  [ Luigi Gangitano <email address hidden> ]
  * debian/squid3.preinst
    - Fix configuration file only if needed and match any uncommented line

0019fbd... by Luigi Gangitano on 2014-10-29

Import patches-unapplied version 3.4.8-2 to debian/sid

Imported using git-ubuntu import.

Changelog parent: d1959854148f31d8a6aaf7d0ceb4a1e30f3c6ba1

New changelog entries:
  [ Santiago Garcia Mantinan <email address hidden> ]
  * Add patch to remove bashisms from cert_tool
  * Add manual page for squid-purge
  * Create run_dir needed for SMP with several workers to run. This
    fixes #710126 (Closes: #732183, #760400)
  * Use CONFIG instead of sq (Closes: #763867)
  * Remove find_cache_type and use grepconf (both functions were =).
  * Allow find_cache_dir and grepconf to have whitespace in the beginning
    (Closes: #761209)
  * Add config check before reload/restart, thanks Freddy (Closes: #728222)
  [ Amos Jeffries <email address hidden> ]
  * debian/squid3.postinst
    - update grepconf to support SMP macros and sub-config files
      when locating cache_dir and effective user/group
  * debian/squid3.rc
    - remove special handling for obsolete COSS cache type
    - change grepconf to support SMP macros and sub-config files
  * debian/rules
    - add distribution details to squid -v display output
      this obsoletes the Ubuntu fix-distribution.patch
  * debian/control
    - bumped libecap dependency version to 0.2.0-2
  * debian/squid3.resolvconf
    - added check on /usr availability before squid3 restart (Closes: #765476)
  [ Luigi Gangitano <email address hidden> ]
  * debian/squid3.rc
    - Change config check to config parse on start/reload/restart
  * debian/control
    - Fixed XS-Vcs-Git Header pointing anonscm.debian.org