[ubuntu/oracular-proposed] squid 6.9-1ubuntu1 (Accepted)
Athos Ribeiro
athos.ribeiro at canonical.com
Fri Jul 5 18:20:12 UTC 2024
squid (6.9-1ubuntu1) oracular; urgency=medium
* Merge with Debian unstable (LP: #2064466). Remaining changes:
- d/usr.sbin.squid: Add sections for squid-deb-proxy and
squidguard
- d/p/90-cf.data.ubuntu.patch: Add refresh patterns for deb
packaging
- Use snakeoil certificates:
+ d/control: add ssl-cert to dependencies
+ d/p/99-ubuntu-ssl-cert-snakeoil.patch: add a note about ssl
to the default config file
- d/NEWS: drop the NIS basic auth helper (LP #1895694)
- d/p/0009-Fix-Werror-alloc-size-larger-than-on-GCC-12.patch:
Fix FTBFS due to -Werror=alloc-size-larger-than on GCC 12.
- d/rules: halt build upon test failures.
- d/rules: do not include additional configuration files during
build time tests. This would lead to test failures due to missing
paths.
- d/t/upstream-test-suite: use installed squid binary for
autopkgtest config file checks.
- d/p/0010-Fix-Werror-sign-compare-on-GCC-13.patch: fix comparison
between signed and unsigned values.
- d/rules: disable LTO related compilation errors for ppc64el builds.
- d/source_squid.py, d/squid-common.install: Add apport hook
(LP #676141)
* Dropped changes:
- SECURITY UPDATE: DoS via chunked decoder uncontrolled recursion bug
+ debian/patches/CVE-2024-25111.patch: fix infinite recursion in
src/http.cc, src/http.h.
+ CVE-2024-25111
[ Fixed in 6.8 ]
* New changes:
- d/t/upstream-test-suite: adjust autopkgtests following dpkg
changes enabling ELF metadata. (LP: #2071468)
squid (6.9-1) unstable; urgency=medium
[ Amos Jeffries <amosjeffries at squid-cache.org> ]
* New Upstream Release 6.9
squid (6.8-1) unstable; urgency=high
[ Amos Jeffries <amosjeffries at squid-cache.org> ]
* New Upstream Release 6.8
Fixes: CVE-2024-25111. SQUID-2024:1
[ Luigi Gangitano <luigi at debian.org> ]
* debian/control
- Migrate from pkg-config to pkgconf
Date: Tue, 02 Jul 2024 14:21:39 -0300
Changed-By: Athos Ribeiro <athos.ribeiro at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/squid/6.9-1ubuntu1
-------------- next part --------------
Format: 1.8
Date: Tue, 02 Jul 2024 14:21:39 -0300
Source: squid
Built-For-Profiles: noudeb
Architecture: source
Version: 6.9-1ubuntu1
Distribution: oracular
Urgency: high
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Athos Ribeiro <athos.ribeiro at canonical.com>
Launchpad-Bugs-Fixed: 2064466 2071468
Changes:
squid (6.9-1ubuntu1) oracular; urgency=medium
.
* Merge with Debian unstable (LP: #2064466). Remaining changes:
- d/usr.sbin.squid: Add sections for squid-deb-proxy and
squidguard
- d/p/90-cf.data.ubuntu.patch: Add refresh patterns for deb
packaging
- Use snakeoil certificates:
+ d/control: add ssl-cert to dependencies
+ d/p/99-ubuntu-ssl-cert-snakeoil.patch: add a note about ssl
to the default config file
- d/NEWS: drop the NIS basic auth helper (LP #1895694)
- d/p/0009-Fix-Werror-alloc-size-larger-than-on-GCC-12.patch:
Fix FTBFS due to -Werror=alloc-size-larger-than on GCC 12.
- d/rules: halt build upon test failures.
- d/rules: do not include additional configuration files during
build time tests. This would lead to test failures due to missing
paths.
- d/t/upstream-test-suite: use installed squid binary for
autopkgtest config file checks.
- d/p/0010-Fix-Werror-sign-compare-on-GCC-13.patch: fix comparison
between signed and unsigned values.
- d/rules: disable LTO related compilation errors for ppc64el builds.
- d/source_squid.py, d/squid-common.install: Add apport hook
(LP #676141)
* Dropped changes:
- SECURITY UPDATE: DoS via chunked decoder uncontrolled recursion bug
+ debian/patches/CVE-2024-25111.patch: fix infinite recursion in
src/http.cc, src/http.h.
+ CVE-2024-25111
[ Fixed in 6.8 ]
* New changes:
- d/t/upstream-test-suite: adjust autopkgtests following dpkg
changes enabling ELF metadata. (LP: #2071468)
.
squid (6.9-1) unstable; urgency=medium
.
[ Amos Jeffries <amosjeffries at squid-cache.org> ]
* New Upstream Release 6.9
.
squid (6.8-1) unstable; urgency=high
.
[ Amos Jeffries <amosjeffries at squid-cache.org> ]
* New Upstream Release 6.8
Fixes: CVE-2024-25111. SQUID-2024:1
.
[ Luigi Gangitano <luigi at debian.org> ]
* debian/control
- Migrate from pkg-config to pkgconf
Checksums-Sha1:
1e752579ff2469e7a6223474a9ac29727c41874b 3061 squid_6.9-1ubuntu1.dsc
0f45f24dc3666921cfb3fb7902c4d7c2f47c35e6 2599344 squid_6.9.orig.tar.xz
62d3076c1a410babf9d158a9abf04162fa38bcd2 646 squid_6.9.orig.tar.xz.asc
f3fe1378a744c063ca51e891f7f2fa027ddafda7 52336 squid_6.9-1ubuntu1.debian.tar.xz
4336c5eba783feb9f97f237394d7719a8b5e782a 7213 squid_6.9-1ubuntu1_source.buildinfo
Checksums-Sha256:
3ba0a63d9254f17e9221753aa5bf5017241d8e29f255acc20f35a7572868aec1 3061 squid_6.9-1ubuntu1.dsc
014f2200fa49c8c61a1cde3f135646c3d0529f560765353c1c74c2de8f843b15 2599344 squid_6.9.orig.tar.xz
10ae3b302d3bcd8798c17c7913b3df897b5b5503eb5cf22f6c80c91077a4d84e 646 squid_6.9.orig.tar.xz.asc
110d4d829b733760fc43557aa19596406bfac40d15a3e5f3cd9b33a18a47e834 52336 squid_6.9-1ubuntu1.debian.tar.xz
66d18dfdffbba03cab5fafc5986f6f9913e499e4086a6b762f9fbff0e1b8e561 7213 squid_6.9-1ubuntu1_source.buildinfo
Files:
d2d45b2660ac47effb19f64ba795f793 3061 web optional squid_6.9-1ubuntu1.dsc
7d96d93c1c73daccbe4532d001d355bf 2599344 web optional squid_6.9.orig.tar.xz
ef576e1dc2b7a05e60f1ac2a202d9a09 646 web optional squid_6.9.orig.tar.xz.asc
e8db29d58e6c5825692258f73000a788 52336 web optional squid_6.9-1ubuntu1.debian.tar.xz
d7c43cce2913099b9b4337170e5286ad 7213 web optional squid_6.9-1ubuntu1_source.buildinfo
Original-Maintainer: Luigi Gangitano <luigi at debian.org>
Vcs-Git: https://git.launchpad.net/~athos-ribeiro/ubuntu/+source/squid
Vcs-Git-Commit: 1967c076f5e7dd9a84eecabec89463f7c333ad88
Vcs-Git-Ref: refs/heads/merge-lp2064466-oracular
More information about the oracular-changes
mailing list