- Update to squid 4.10:

* fixes a security issue allowing a remote client ability to cause use a buffer overflow when squid is acting as reverse-proxy. (CVE-2020-8449, CVE-2020-8450, bsc#1162687) * fixes a security issue allowing for information disclosure in FTP gateway (CVE-2019-12528, bsc#1162689) * fixes a security issue in ext_lm_group_acl when processing NTLM Authentication credentials. (CVE-2020-8517, bsc#1162691) * improve cache handling with chunked responses OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=202
2020-02-05 10:09:46 +00:00
parent b862c898ec
commit 4575171bf0
6 changed files with 43 additions and 30 deletions
--- a/squid.changes
+++ b/squid.changes
@@ -1,3 +1,16 @@
+-------------------------------------------------------------------
+Wed Feb  5 09:57:59 UTC 2020 - Adam Majer <adam.majer@suse.de>
+
+- Update to squid 4.10:
+  * fixes a security issue allowing a remote client ability to cause
+    use a buffer overflow when squid is acting as reverse-proxy.
+    (CVE-2020-8449, CVE-2020-8450, bsc#1162687)
+  * fixes a security issue allowing for information disclosure in
+    FTP gateway (CVE-2019-12528, bsc#1162689)
+  * fixes a security issue in ext_lm_group_acl when processing
+    NTLM Authentication credentials. (CVE-2020-8517, bsc#1162691)
+  * improve cache handling with chunked responses
+
 -------------------------------------------------------------------
 Fri Nov  8 15:24:15 UTC 2019 - Adam Majer <adam.majer@suse.de>