9f839c09d5Accepting request 795800 from server:proxy
Dominique Leuenberger
2020-04-21 11:11:43 +0000
1a19c2cddaAccepting request 795761 from home:kukuk:branches:server:proxyAdam Majer2020-04-20 11:30:46 +0000
1a693817c3Accepting request 792007 from server:proxy
Dominique Leuenberger
2020-04-08 17:57:10 +0000
7c91a28b19Add missing CVE number to upstream releaseAdam Majer2020-03-31 14:28:53 +0000
e641f7a8bcAccepting request 776229 from server:proxy
Dominique Leuenberger
2020-02-19 11:43:04 +0000
53be975248Accepting request 776203 from home:kukuk:container
Martin Pluskal
2020-02-19 08:58:35 +0000
9b1651858aAccepting request 770216 from server:proxy
Dominique Leuenberger
2020-02-05 18:44:27 +0000
4575171bf0- Update to squid 4.10: * fixes a security issue allowing a remote client ability to cause use a buffer overflow when squid is acting as reverse-proxy. (CVE-2020-8449, CVE-2020-8450, bsc#1162687) * fixes a security issue allowing for information disclosure in FTP gateway (CVE-2019-12528, bsc#1162689) * fixes a security issue in ext_lm_group_acl when processing NTLM Authentication credentials. (CVE-2020-8517, bsc#1162691) * improve cache handling with chunked responsesAdam Majer2020-02-05 10:09:46 +0000
5dc6931f93Accepting request 746661 from server:proxy
Dominique Leuenberger
2019-11-09 22:40:27 +0000
b862c898ec- Update to squid 4.9: * fixes multiple Cross-Site Scripting issues in cachemgr.cgi (CVE-2019-13345, bsc#1140738) * fixes heap overflow in URN processing (CVE-2019-12526, bsc#1156326) * fixes multiple issues in URI processing (CVE-2019-12523, CVE-2019-18676, bsc#1156329) * fixes Cross-Site Request Forgery in HTTP Request processing (CVE-2019-18677, bsc#1156328) * fixes HTTP Request Splitting in HTTP message processing (CVE-2019-18678, bsc#1156323) * fixes information disclosure in HTTP Digest Authentication (CVE-2019-18679, bsc#1156324) * lower cache_peer hostname - this showed up as DNS failures if peer name was configured with any upper case characters * TLS: Multiple SSL-Bump fixes * TLS: Fix expiration of self-signed generated certs to be 3 years * TLS: Fix on_unsupported_protocol tunnel action * Fix several rock cache_dir corruption issues - fix_configuration_error.patch: upstreamed - old_nettle_compat.patch: refreshedAdam Majer2019-11-08 16:23:28 +0000
ad1d02283eAccepting request 721533 from server:proxy
Dominique Leuenberger
2019-08-08 12:23:33 +0000
49783ccec7- disable LTO to as a workaround to tests failingAdam Majer2019-07-16 07:57:43 +0000
1f7d2548ca- Update to squid 4.8: + Ignore ECONNABORTED in accept(2) + RFC 7230 forbids generation of userinfo subcomponent of https URL + cachemgr.cgi: unallocated memory access resulting in a potential denial of service. (bsc#1141442, CVE-2019-12854) + terminating c-strings beyond BASE64_DECODE_LENGTH + Replace uudecode with libnettle base64 decoder fixing a denial of service vulnerability (bsc#1141329, CVE-2019-12529) + fix to_localhost does not include :: + Fix GCC-9 build issues + Fix Digest auth parameter parsing preventing a potential denial of service (bsc#1141332, CVE-2019-12525) + Update HttpHeader::getAuth to SBuf which prevents a potential heap overflowing allowing a possible remote code execution attack when processing HTTP Authentication credentials (bsc#1141330, CVE-2019-12527) + Add the NO_TLSv1_3 option to available tls-options values + Fix handling of tiny invalid responses + Fix Memory leak when http_reply_access uses external_acl + Fix Multiple XSS issues in cachemgr.cgi (bsc#1140738, CVE-2019-13345)Adam Majer2019-07-15 15:22:32 +0000
0b6b75ecb3Accepting request 702817 from server:proxy
Dominique Leuenberger
2019-05-15 10:33:54 +0000
777c5c3d20Few more missing bug numbers from 3.x lineAdam Majer2019-05-14 11:29:55 +0000
a7bfb7108bAccepting request 701549 from server:proxy
Dominique Leuenberger
2019-05-08 13:17:46 +0000
f7bbf15a1d- Update to squid 4.7: (jsc#SLE-5648) + Fix stack-based buffer-overflow when parsing SNMP messages + Fixed squidclient authentication + Add support for buffer-size= to UDP logging + Trust intermediate CAs from trusted stores + Bug #4928: Cannot convert non-IPv4 to IPv4 + Bug #4796: comm.cc !isOpen(conn->fd) assertion when rotating logs + Bug #4823: assertion failed: "lowestOffset () <= target_offset" (bsc#1133089) + Bug #4942: --with-filedescriptors does not do anythingAdam Majer2019-05-08 10:45:58 +0000
d65c3be188- Syncronize bug and CVE references between 3.x and 4.x squid changelogAdam Majer2019-02-26 16:24:46 +0000
4bc6b0168eAccepting request 678651 from server:proxy
Stephan Kulow
2019-02-25 16:57:01 +0000
41a28e8b22Accepting request 678364 from home:seanlew:branches:server:proxy
Martin Pluskal
2019-02-25 07:58:31 +0000
142b1d34e9Accepting request 677001 from server:proxy
Yuchen Lin
2019-02-19 11:00:50 +0000
0dc8c8b0d5- Revert whitespace deletions of .changes as it makes diffs a pain.Adam Majer2019-02-18 10:04:44 +0000
8ed27ce66bAccepting request 676612 from home:jengelh:branches:server:proxy
Martin Pluskal
2019-02-18 07:45:40 +0000
5f3fd69e41Accepting request 662383 from server:proxy
Dominique Leuenberger
2019-01-03 17:08:06 +0000