ubuntu/+source/squid3:ubuntu/xenial-updates

Last commit made on 2020-02-20
Get this branch:
git clone -b ubuntu/xenial-updates https://git.launchpad.net/ubuntu/+source/squid3
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/xenial-updates
Repository:
lp:ubuntu/+source/squid3

Recent commits

0eab349... by Marc Deslauriers on 2020-02-19

Import patches-unapplied version 3.5.12-1ubuntu7.10 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 4acc1ecfa444b75efd1c7c44b9e4b2f41a826da1

New changelog entries:
  * SECURITY UPDATE: info disclosure via FTP server
    - debian/patches/CVE-2019-12528.patch: fix FTP buffers handling in
      src/clients/FtpGateway.cc.
    - CVE-2019-12528
  * SECURITY UPDATE: incorrect input validation and buffer management
    - debian/patches/CVE-2020-84xx-1.patch: ignore malformed Host header in
      intercept and reverse proxy mode in src/client_side.cc.
    - debian/patches/CVE-2020-84xx-2.patch: fix request URL generation in
      reverse proxy configurations in src/client_side.cc.
    - debian/patches/CVE-2020-84xx-3.patch: fix security patch in
      src/client_side.cc.
    - CVE-2020-8449
    - CVE-2020-8450
  * SECURITY UPDATE: DoS in NTLM authentication
    - debian/patches/CVE-2020-8517.patch: improved username handling in
      helpers/external_acl/LM_group/ext_lm_group_acl.cc.
    - CVE-2020-8517

4acc1ec... by Marc Deslauriers on 2019-11-20

Import patches-unapplied version 3.5.12-1ubuntu7.9 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 908cd81c957de9461255c18a96521023a08afdf1

New changelog entries:
  * SECURITY UPDATE: Heap Overflow issue in URN processing
    - debian/patches/CVE-2019-12526.patch: fix URN response handling in
      src/urn.cc.
    - CVE-2019-12526
  * SECURITY UPDATE: CSRF issue in HTTP Request processing
    - debian/patches/CVE-2019-18677.patch: prevent truncation for large
      origin-relative domains in src/URL.h, src/internal.cc, src/url.cc.
    - CVE-2019-18677
  * SECURITY UPDATE: HTTP Request Splitting in HTTP message processing
    - debian/patches/CVE-2019-18678.patch: server MUST reject messages with
      BWS after field-name in src/HttpHeader.cc, src/HttpHeader.h.
    - CVE-2019-18678
    - CVE-2019-18679

908cd81... by Marc Deslauriers on 2019-07-16

Import patches-unapplied version 3.5.12-1ubuntu7.8 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 96b6871730d1251c3e4297cea3a56c88a39e24fe

New changelog entries:
  * SECURITY UPDATE: incorrect digest auth parameter parsing
    - debian/patches/CVE-2019-12525.patch: check length in
      src/auth/digest/Config.cc.
    - CVE-2019-12525
  * SECURITY UPDATE: basic auth uudecode length issue
    - debian/patches/CVE-2019-12529.patch: replace uudecode with libnettle
      base64 decoder in lib/Makefile.*, src/auth/basic/Config.cc,
      include/uudecode.h, lib/uudecode.c.
    - CVE-2019-12529

96b6871... by Marc Deslauriers on 2019-07-11

Import patches-unapplied version 3.5.12-1ubuntu7.7 to ubuntu/xenial-security

Imported using git-ubuntu import.

Changelog parent: 745fc519360964c2ed9e8dd9b0aca7a2a20ec972

New changelog entries:
  * SECURITY UPDATE: DoS via SNMP memory leak
    - debian/patches/CVE-2018-19132.patch: fix leak in src/snmp_core.cc.
    - CVE-2018-19132
  * SECURITY UPDATE: XSS issues in cachemgr.cgi
    - debian/patches/CVE-2019-13345.patch: properly escape values in
      tools/cachemgr.cc.
    - CVE-2019-13345

745fc51... by Andreas Hasenack on 2018-10-31

Import patches-unapplied version 3.5.12-1ubuntu7.6 to ubuntu/xenial-proposed

Imported using git-ubuntu import.

Upload parent: 952103bbf339cabc5fbe17214eb6909d2f23652e

952103b... by Andreas Hasenack on 2018-10-31

changelog

aeca44c... by Andreas Hasenack on 2018-10-30

  * d/t/squid: use a shorter shutdown timeout for the tests, so they
    run faster

9e1145b... by Andreas Hasenack on 2018-10-30

  * d/t/control: drop uneeded dependency on python-unit.

a06c85f... by Andreas Hasenack on 2018-10-30

  * d/t/test-squid.py: in xenial, initscript, apparmor profile, pidfile and
    process are named squid, not squid3. Get rid of the multiple distro
    logic since these tests will be only run on xenial.

f6cbea5... by Andreas Hasenack on 2018-10-29

  * d/squid.rc: fix regexp for catching FATAL errors (LP: #1738412)