Dominique Leuenberger
2835498b26
Accepting request 1006088 from server:proxy
...
- Migration to /usr/etc: Saving user changed configuration files
in /etc and restoring them while an RPM update.
and CVE references,
- Regression Fix: Typo in manager ACL (bsc#1203677, CVE-2022-41317)
(bsc#1203680, CVE-2022-41318)
OBS-URL: https://build.opensuse.org/request/show/1006088
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=107
2022-09-26 16:48:40 +00:00
0c32424ab7
Accepting request 1003832 from home:schubi2:logrotate
...
- Migration to /usr/etc: Saving user changed configuration files
in /etc and restoring them while an RPM update.
OBS-URL: https://build.opensuse.org/request/show/1003832
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=263
2022-09-26 10:29:20 +00:00
7c543ee7fd
Add CVE references
...
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=262
2022-09-26 10:23:09 +00:00
Dominique Leuenberger
384314cf9f
Accepting request 1003011 from server:proxy
...
OBS-URL: https://build.opensuse.org/request/show/1003011
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=106
2022-09-12 17:09:05 +00:00
221d387569
Accepting request 1002491 from home:dirkmueller:Factory
...
- update to 5.7:
- Regression Fix: Typo in manager ACL
- Bug 5186: noteDestinationsEnd check failed: transportWait
- Bug 5160: Test suite fails with -flto=auto
- Bug 3193 pt2: NTLM decoder truncating strings
- Bug 5133: OpenSSL 3.0 support
- ext_session_acl: fix TDB key lookup
- forward_max_tries: Do not count discarded connections
- ... and many compile and debugging fixes
OBS-URL: https://build.opensuse.org/request/show/1002491
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=260
2022-09-12 15:32:36 +00:00
Dominique Leuenberger
e089dbe488
Accepting request 999925 from server:proxy
...
OBS-URL: https://build.opensuse.org/request/show/999925
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=105
2022-08-30 12:49:06 +00:00
e83ebc1600
Accepting request 999891 from home:computersalat:devel:proxy
...
fix PIDFile
OBS-URL: https://build.opensuse.org/request/show/999891
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=258
2022-08-29 11:10:51 +00:00
Dominique Leuenberger
7ab08601a3
Accepting request 985925 from server:proxy
...
OBS-URL: https://build.opensuse.org/request/show/985925
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=104
2022-06-30 11:18:25 +00:00
Lars Vogdt
3d5852fb75
Accepting request 985780 from home:schubi2
...
- Moved logrotate files from user specific directory /etc/logrotate.d
to vendor specific directory /usr/etc/logrotate.d.
OBS-URL: https://build.opensuse.org/request/show/985780
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=256
2022-06-29 17:56:59 +00:00
Dominique Leuenberger
828dd3c8c8
Accepting request 984871 from server:proxy
...
- Update to 5.6:
* Improve handling of Gopher responses (bsc#1200907, CVE-2021-46784)
- Changes in 5.5:
* fixes regression Bug 5192: esi_parser default is incorrect
* Bug 5177: clientca certificates sent to https_port clients
* Bug 5090: Must(!request->pinnedConnection()) violation
* Kid restart leads to persistent queue overflows, delays/timeouts
OBS-URL: https://build.opensuse.org/request/show/984871
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=103
2022-06-25 08:24:14 +00:00
3db5ecbad9
- Update to 5.6:
...
* Improve handling of Gopher responses (bsc#1200907, CVE-2021-46784)
- Changes in 5.5:
* fixes regression Bug 5192: esi_parser default is incorrect
* Bug 5177: clientca certificates sent to https_port clients
* Bug 5090: Must(!request->pinnedConnection()) violation
* Kid restart leads to persistent queue overflows, delays/timeouts
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=254
2022-06-24 09:29:25 +00:00
Dominique Leuenberger
24f7dcfe4b
Accepting request 966241 from server:proxy
...
- Do not try to set special permissions for basic_pam_auth (bsc#1197649)
OBS-URL: https://build.opensuse.org/request/show/966241
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=102
2022-04-01 19:35:36 +00:00
12b4ed7ebc
- Do not try to set special permissions for basic_pam_auth (bsc#1197649)
...
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=252
2022-03-31 14:26:52 +00:00
Dominique Leuenberger
d6ca2748d9
Accepting request 965649 from server:proxy
...
- Fix upgrade path from squid 4.x where we replaced some symlinks
with directories in pretrans section (bsc#1197333)
- old_nettle_compat.patch: refresh patch
OBS-URL: https://build.opensuse.org/request/show/965649
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=101
2022-03-29 16:16:15 +00:00
eae485a694
with directories in pretrans section (bsc#1197333)
...
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=250
2022-03-29 12:32:38 +00:00
7a4d40ca76
- Fix upgrade path from squid 4.x where we replaced some symlinks
...
with directories (bsc#1197333)
- old_nettle_compat.patch: refresh patch
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=249
2022-03-29 12:30:01 +00:00
Dominique Leuenberger
e84e29bcf2
Accepting request 961868 from server:proxy
...
Automatic submission by obs-autosubmit
OBS-URL: https://build.opensuse.org/request/show/961868
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=100
2022-03-15 18:03:52 +00:00
3a4ba9cfbe
Add CVE reference only
...
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=247
2022-03-08 11:45:31 +00:00
Dominique Leuenberger
8c3c7904b6
Accepting request 958214 from server:proxy
...
OBS-URL: https://build.opensuse.org/request/show/958214
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=99
2022-03-01 16:03:38 +00:00
Martin Pluskal
487cb8560d
Accepting request 957749 from home:AndreasStieger:branches:server:proxy
...
squid 5.4.1
OBS-URL: https://build.opensuse.org/request/show/957749
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=246
2022-03-01 08:14:36 +00:00
Dominique Leuenberger
7fcf28aa05
Accepting request 952695 from server:proxy
...
OBS-URL: https://build.opensuse.org/request/show/952695
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=98
2022-02-09 19:39:20 +00:00
Martin Pluskal
2540ef9507
Accepting request 952643 from home:polslinux:branches:server:proxy
...
- Update to 5.4:
* Bug 5190: Preserve configured order of intermediate CA certificate chain
* Bug 5188: Fix reconfiguration leaking tls-cert=... memory
* Bug 5187: Properly track (and mark) truncated store entries
* Bug 5134: assertion failed: Transients.cc:221: "old == e"
* Bug 5132: Close the tunnel if to-server conn closes after client
OBS-URL: https://build.opensuse.org/request/show/952643
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=245
2022-02-08 13:46:41 +00:00
Dominique Leuenberger
389d50ec6e
Accepting request 942126 from server:proxy
...
- Adjust harden_squid.service.patch to resolve boo#1193938
OBS-URL: https://build.opensuse.org/request/show/942126
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=97
2021-12-22 19:18:17 +00:00
Martin Pluskal
c791b32bc9
- Adjust harden_squid.service.patch to resolve boo#1193938
...
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=244
2021-12-22 14:26:08 +00:00
Dominique Leuenberger
11313c1e8a
Accepting request 941860 from server:proxy
...
OBS-URL: https://build.opensuse.org/request/show/941860
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=96
2021-12-21 17:40:50 +00:00
Martin Pluskal
da562559a5
Accepting request 939558 from home:dirkmueller:Factory
...
- update to 5.3:
* Bug 5169: StoreMap.cc:517 "!s.reading()" assertion
* Bug 5158: AnyP::Uri::host() mishandles [escaped] IPv6 addresses
* Bug 5060: Parallel builds are not reliable
* Documentation updates for logformat directive
OBS-URL: https://build.opensuse.org/request/show/939558
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=243
2021-12-21 14:30:33 +00:00
Dominique Leuenberger
38338573ad
Accepting request 936249 from server:proxy
...
OBS-URL: https://build.opensuse.org/request/show/936249
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=95
2021-12-07 23:00:02 +00:00
Martin Pluskal
1ba7c0f00b
Accepting request 933486 from home:jsegitz:branches:systemdhardening:server:proxy
...
Automatic systemd hardening effort by the security team. This has not been tested. For details please see https://en.opensuse.org/openSUSE:Security_Features#Systemd_hardening_effort
OBS-URL: https://build.opensuse.org/request/show/933486
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=242
2021-12-07 12:01:22 +00:00
Dominique Leuenberger
b367df9e33
Accepting request 923558 from server:proxy
...
- transition to squid 5.x. This is a major release and for changes
and how to transition from 4.x, see the release notes,
http://www.squid-cache.org/Versions/v5/RELEASENOTES.html
- update to 5.2
* fixes issues with WCCP protocol that may lead to information
disclosure (bsc#1189403, CVE-2021-28116)
- drop unused BR: db-devel, ed, opensp-devel, pkgconfig(kdb)
- new BR: pkgconfig(tdb)
OBS-URL: https://build.opensuse.org/request/show/923558
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=94
2021-10-07 22:05:48 +00:00
7540de6b79
Fix Source URLs
...
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=241
2021-10-06 17:10:48 +00:00
Martin Pluskal
91cd7d9ece
Accepting request 923273 from home:adamm:branches:server:proxy
...
- transition to squid 5.x. This is a major release and for changes
and how to transition from 4.x, see the release notes,
http://www.squid-cache.org/Versions/v5/RELEASENOTES.html
- update to 5.2
* fixes issues with WCCP protocol that may lead to information
disclosure (bsc#1189403, CVE-2021-28116)
- drop unused BR: db-devel, ed, opensp-devel, pkgconfig(kdb)
- new BR: pkgconfig(tdb)
OBS-URL: https://build.opensuse.org/request/show/923273
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=240
2021-10-06 08:28:26 +00:00
Dominique Leuenberger
c66d86bb71
Accepting request 909881 from server:proxy
...
OBS-URL: https://build.opensuse.org/request/show/909881
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=93
2021-08-03 20:48:45 +00:00
Martin Pluskal
f4a3ff6528
Accepting request 909588 from home:dirkmueller:Factory
...
- update to 4.16:
- Regression Fix: --with-valgrind-debug build broken since 4.15
- Bug 5129 pt1: remove Lock use from HttpRequestMethod
- Bug 5128: Translation: Fix '% i' typo in es/ERR_FORWARDING_DENIED
- Bug 4528: ICAP transactions quit on async DNS lookups
OBS-URL: https://build.opensuse.org/request/show/909588
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=239
2021-08-03 07:22:15 +00:00
Dominique Leuenberger
b62fb0f8f4
Accepting request 895417 from server:proxy
...
Automatic submission by obs-autosubmit
OBS-URL: https://build.opensuse.org/request/show/895417
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=92
2021-06-01 08:36:47 +00:00
9d9e9e1d0b
Add missing bug reference
...
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=237
2021-05-18 18:11:24 +00:00
Dominique Leuenberger
6804707c59
Accepting request 893984 from server:proxy
...
Adding bug and CVE references only
OBS-URL: https://build.opensuse.org/request/show/893984
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=91
2021-05-18 16:26:46 +00:00
3761d61a9d
- fix building with SLE12
...
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=235
2021-05-18 12:44:03 +00:00
abcd5831a0
- Bug 5106: Broken cache manager URL parsing (bsc#1185918, CVE-2021-28652)
...
(bsc#1185921, CVE-2021-28651)
(bsc#1185919, CVE-2021-28662)
- Handle more Range requests (bsc#1185916, CVE-2021-31806)
- Handle more partial responses (bsc#1185923)
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=234
2021-05-18 08:58:40 +00:00
Dominique Leuenberger
0cfadfd43c
Accepting request 892494 from server:proxy
...
OBS-URL: https://build.opensuse.org/request/show/892494
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=90
2021-05-12 17:32:42 +00:00
Martin Pluskal
b8860150b2
Accepting request 892304 from home:dirkmueller:Factory
...
- update to 4.15:
- Bug 5112: Excessively loud chunked reply parsing error reporting
- Bug 5106: Broken cache manager URL parsing
- Bug 5104: Memory leak in RFC 2169 response parsing
- Bug 3556: "FD ... is not an open socket" for accept() problems
- Profiling: CPU timing implemented for MAC non-x86
- Fix HttpHeaderStats definition to include hoErrorDetail
- Fix Squid-to-client write_timeout triggers client_lifetime timeout
- Limit HeaderLookupTable_t::lookup() to BadHdr and specific IDs
- Handle more Range requests
- Handle more partial responses
- Stop processing a response if the Store entry is gone
- ... and some portability fixes
- ... and some documentation updates
OBS-URL: https://build.opensuse.org/request/show/892304
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=232
2021-05-12 12:31:04 +00:00
Dominique Leuenberger
3bf85069ce
Accepting request 870771 from server:proxy
...
OBS-URL: https://build.opensuse.org/request/show/870771
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=89
2021-02-10 20:31:00 +00:00
Martin Pluskal
0e6d2ed89f
Accepting request 870712 from home:dirkmueller:branches:server:proxy
...
- update to 4.14:
- Regression Fix: support for non-lowercase Transfer-Encoding value
- Regression Fix: cachemgr.cgi wrong 403 response to authenticated menu URIs
- Bug 5076: WCCP Security Info incorrect
- Bug 5073: Compile error: index was not declared in this scope
- Bug 5065: url_rewrite_program documentation update
- Bug 3074 pt2: improved handling of URI paths implicit '/'
- Fix transactions exceeding client_lifetime logged as _ABORTED
OBS-URL: https://build.opensuse.org/request/show/870712
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=230
2021-02-10 06:37:01 +00:00
Dominique Leuenberger
035ce7c4e7
Accepting request 846311 from server:proxy
...
- re-add older SLES12 requirements so we can use one devel project
for all codestreams
- fix previous change to reinstante permissions macros, because the wrong path
has been used (bsc#1171569).
- use libexecdir instead of libdir to conform to recent changes in Factory
(bsc#1171164).
OBS-URL: https://build.opensuse.org/request/show/846311
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=88
2020-11-05 20:56:20 +00:00
8d1748fdfd
Accepting request 846223 from home:adamm:branches:server:proxy
...
- re-add older SLES12 requirements so we can use one devel project
for all codestreams
- fix previous change to reinstante permissions macros, because the wrong path
has been used (bsc#1171569).
- use libexecdir instead of libdir to conform to recent changes in Factory
(bsc#1171164).
OBS-URL: https://build.opensuse.org/request/show/846223
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=228
2020-11-05 16:30:46 +00:00
Dominique Leuenberger
04ac4278eb
Accepting request 840300 from server:proxy
...
- Reinstate permissions macros for pinger binary, because the permissions
package is also responsible for setting up the cap_net_raw capability,
currently a fresh squid install doesn't get a capability bit at all
(bsc#1171569).
OBS-URL: https://build.opensuse.org/request/show/840300
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=87
2020-10-09 22:29:08 +00:00
9446ddfb48
Unescape macros
...
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=226
2020-10-08 14:14:03 +00:00
f80a1dd80c
Accepting request 840239 from home:mgerstner:branches:server:proxy
...
- Reinstate permissions macros for pinger binary, because the permissions
package is also responsible for setting up the cap_net_raw capability,
currently a fresh squid install doesn't get a capability bit at all
(bsc#1171569).
OBS-URL: https://build.opensuse.org/request/show/840239
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=225
2020-10-08 14:13:00 +00:00
Dominique Leuenberger
c9bc4ae547
Accepting request 831407 from server:proxy
...
Automatic submission by obs-autosubmit
OBS-URL: https://build.opensuse.org/request/show/831407
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=86
2020-09-02 23:13:55 +00:00
b0e79047c9
Added CVE number only
...
OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=223
2020-08-26 08:32:58 +00:00
Dominique Leuenberger
31a6238417
Accepting request 828922 from server:proxy
...
- squid 4.13:
* Enforce token characters for field-name (#700 )
* Fix livelocking in peerDigestHandleReply (#698 ) (bsc#1175671)
* Improve Transfer-Encoding handling (#702 )
(bsc#1175665, CVE-2020-15811)
* Forbid obs-fold and bare CR whitespace in framing header fields (#701 )
* Source Format Enforcement
* Enforce token characters for field-name (#700 )
(bsc#1175664, CVE-2020-15810)
* Do not stall while debugging a scan of an empty store_table (#699 )
* Fix livelocking in peerDigestHandleReply (#698 )
* Honor on_unsupported_protocol for intercepted https_port (#689 )
* Bug #5051 : Some collapsed revalidation responses never expire (#683 )
* SslBump: Support parsing GREASEd (and future) TLS handshakes (#663 )
OBS-URL: https://build.opensuse.org/request/show/828922
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/squid?expand=0&rev=85
2020-08-25 07:33:38 +00:00