From 9f88e6bab0b31a1433f3844d08633b3a37ec7f07f3854f39faee811764dafbba Mon Sep 17 00:00:00 2001 From: Adam Majer Date: Mon, 24 Aug 2020 11:53:55 +0000 Subject: [PATCH] - squid 4.13: * Enforce token characters for field-name (#700) * Fix livelocking in peerDigestHandleReply (#698) (bsc#1175671) * Improve Transfer-Encoding handling (#702) (bsc#1175665, CVE-2020-15811) * Forbid obs-fold and bare CR whitespace in framing header fields (#701) * Source Format Enforcement * Enforce token characters for field-name (#700) (bsc#1175664, CVE-2020-15810) * Do not stall while debugging a scan of an empty store_table (#699) * Fix livelocking in peerDigestHandleReply (#698) * Honor on_unsupported_protocol for intercepted https_port (#689) * Bug #5051: Some collapsed revalidation responses never expire (#683) * SslBump: Support parsing GREASEd (and future) TLS handshakes (#663) OBS-URL: https://build.opensuse.org/package/show/server:proxy/squid?expand=0&rev=221 --- squid-4.12.tar.xz | 3 --- squid-4.12.tar.xz.asc | 25 ------------------------- squid-4.13.tar.xz | 3 +++ squid-4.13.tar.xz.asc | 25 +++++++++++++++++++++++++ squid.changes | 18 ++++++++++++++++++ squid.spec | 2 +- 6 files changed, 47 insertions(+), 29 deletions(-) delete mode 100644 squid-4.12.tar.xz delete mode 100644 squid-4.12.tar.xz.asc create mode 100644 squid-4.13.tar.xz create mode 100644 squid-4.13.tar.xz.asc diff --git a/squid-4.12.tar.xz b/squid-4.12.tar.xz deleted file mode 100644 index 23814c3..0000000 --- a/squid-4.12.tar.xz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:f42a03c8b3dc020722c88bf1a87da8cb0c087b2f66b41d8256c77ee1b527e317 -size 2450564 diff --git a/squid-4.12.tar.xz.asc b/squid-4.12.tar.xz.asc deleted file mode 100644 index bb8d0bf..0000000 --- a/squid-4.12.tar.xz.asc +++ /dev/null @@ -1,25 +0,0 @@ -File: squid-4.12.tar.xz -Date: Tue Jun 9 07:34:59 UTC 2020 -Size: 2450564 -MD5 : ad7a4a8a0031cae3435717a759173829 -SHA1: 316b8a343aa542b5e7469d33b9d726bee00679c6 -Key : CD6DBF8EF3B17D3E - B068 84ED B779 C89B 044E 64E3 CD6D BF8E F3B1 7D3E - keyring = http://www.squid-cache.org/pgp.asc - keyserver = pool.sks-keyservers.net ------BEGIN PGP SIGNATURE----- - -iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAl7fO6wACgkQzW2/jvOx -fT5dchAAvAB2fh/QBkumskN/K5c061NFA+/ZbHD8gqmvaUUIjXNoEqBhBAzTpCpm -03XcFZdIBFKqkHxiJrlWzdRylSqv5nkw1qZBN6S6NzygYVs3UYHkpNSM8AZLBW4c -XDZEnmYbr2HlWHJ9fISsWhwApQ2HXwzUdMAFeN3ADDtT2nbCSjpO89sFj6zHrUVo -sWsf+pKuPd6C/30MymsF5ZQVkmAeb1TRDRpnWvg0Ec//m2Sw0p6nKlr0uPBLMALW -nIQivuf6MRTaa0iFibWtIyA4m88mUZLifWM9F3DOJcJYjXlKjWpQ0GQY/ylpDpeL -DzMbIV/Ycv4R/w6Hk6f4MDva7FRkamlsUhCUrrL09B0CaAjnW3b0wIbFnoiCP2cL -48TST3NjKy2CG8yrHKL2G5mER2T/KyGv3m2TvVNl+sihH35Urtq9ecBCn2UwiRFL -mNsEXllhMVzYmRwlN3+1Y+P612jdpdSLzIQH++ih3FYhpiZRrUPKYWNSYnesUQo+ -AJiOoDzdqzHlg2P5ZVQlhaTf7qEMLf55w6TzPJ4lo6DuDdIyGVBJBJFiuBMp6JHr -jElIYnwgCJ2j+Lmr2pmN0njlhSkio6084Wava37P3c61wqFF47NErO8bwaUZNPT/ -66A23tcqM1ADeBB9Ll4vmxjvn/CHrWmX0RzoOp2VCG8s7i1CT1E= -=c3VT ------END PGP SIGNATURE----- diff --git a/squid-4.13.tar.xz b/squid-4.13.tar.xz new file mode 100644 index 0000000..dc74a20 --- /dev/null +++ b/squid-4.13.tar.xz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:6891a0f540e60779b4f24f1802a302f813c6f473ec7336a474ed68c3e2e53ee0 +size 2452752 diff --git a/squid-4.13.tar.xz.asc b/squid-4.13.tar.xz.asc new file mode 100644 index 0000000..6c610a1 --- /dev/null +++ b/squid-4.13.tar.xz.asc @@ -0,0 +1,25 @@ +File: squid-4.13.tar.xz +Date: Sat 22 Aug 2020 19:33:59 UTC +Size: 2452752 +MD5 : 492e54afc15821141ff1d1d9903854d6 +SHA1: cac95c18789e9ecd6620c2f278fc3900498c065b +Key : CD6DBF8EF3B17D3E + B068 84ED B779 C89B 044E 64E3 CD6D BF8E F3B1 7D3E + keyring = http://www.squid-cache.org/pgp.asc + keyserver = pool.sks-keyservers.net +-----BEGIN PGP SIGNATURE----- + +iQIzBAABCgAdFiEEsGiE7bd5yJsETmTjzW2/jvOxfT4FAl9BczQACgkQzW2/jvOx +fT54vQ//S7KNcv8wiO9GFYmRW0At2aJqE7j3alni5PBNzHvZKHwNyBfGFaCPGm0+ ++lM2VoYwVrELBqg9gFUpKvFscUtqBQyFAd+84JjJ2x6IJp2+eajxO+1grbwa+4aw +pcFu73MzzSgZ8n0IJB95zJoD5Tc/AHt6MXn84BABo3bFXNBSw1y6yFTuz8MtfLBQ +ACFWVTPmoei0DyD0gdF+qGHydlLJG+8GDpzXM6gMDjAxbFXkPqWey0V8+vQ8SFrC +8t4XMBCC7VyhzM9kOP5hgStRHzhuGNBedfqd0VrY0xOlYjCQrY7ihelak7NfvlHx +wIMM/tuiSV+DgMNVLG4aCmtPWtyrvw1N0jz7+dr243sf8iuSEulIa98IM5YGPeq7 +alHPkmoyLfjhKHW33xzS+oM8jBvOH3A4gIgTna8t/5tWwgttRA1T4xqbBDfNAGy8 +qxJeLlqKaFO9tyvkGqMT+CEcthULrKGOBqFu/DfkAoID/x7a3gyLVaYhHtOtUv8y +EIISadVos3XGTZfnn8OFWsJ0etWrfveYR36P+ImhQku5uwK1hr6YE6khY5UWYJL/ +pdaT6jzLzwB6DtUdSfwiE44aaftxOEGH4ZdlLo6dgGlEVh12ni91Jn99v9sg9X4D +bFXMWa7u7bMgAvEPyjEd2fSNk7UFUL2+gAxOtBN79RxMwg520zc= +=/0kc +-----END PGP SIGNATURE----- diff --git a/squid.changes b/squid.changes index 65acd02..ae67d94 100644 --- a/squid.changes +++ b/squid.changes @@ -1,3 +1,21 @@ +------------------------------------------------------------------- +Mon Aug 24 11:38:09 UTC 2020 - Adam Majer + +- squid 4.13: + * Enforce token characters for field-name (#700) + * Fix livelocking in peerDigestHandleReply (#698) (bsc#1175671) + * Improve Transfer-Encoding handling (#702) + (bsc#1175665, CVE-2020-15811) + * Forbid obs-fold and bare CR whitespace in framing header fields (#701) + * Source Format Enforcement + * Enforce token characters for field-name (#700) + (bsc#1175664, CVE-2020-15810) + * Do not stall while debugging a scan of an empty store_table (#699) + * Fix livelocking in peerDigestHandleReply (#698) + * Honor on_unsupported_protocol for intercepted https_port (#689) + * Bug #5051: Some collapsed revalidation responses never expire (#683) + * SslBump: Support parsing GREASEd (and future) TLS handshakes (#663) + ------------------------------------------------------------------- Fri Jul 24 15:03:53 UTC 2020 - Adam Majer diff --git a/squid.spec b/squid.spec index 833875d..014feaa 100644 --- a/squid.spec +++ b/squid.spec @@ -26,7 +26,7 @@ %endif Name: squid -Version: 4.12 +Version: 4.13 Release: 0 Summary: Caching and forwarding HTTP web proxy License: GPL-2.0-or-later