[ubuntu/saucy-proposed] squid3 3.3.8-1ubuntu1 (Accepted)
James Page
james.page at ubuntu.com
Wed Aug 14 08:06:14 UTC 2013
squid3 (3.3.8-1ubuntu1) saucy; urgency=low
* Merge from Debian unstable, remaining changes:
+ debian/control:
- Update maintainer.
- Suggests apparmor (>= 2.3)
- Depends on ssl-cert ((>= 1.0-11ubuntu1), autopkgtests
+ debian/squid3.upstart
- Move ulimit command to script section so that it applies
to the started squid daemon. Thanks to Timur Irmatov (LP: 986159)
- Work around squid not handling SIGHUP by adding respawn to
upstart job. (LP: 978356)
+ debian/NEWS.Debian: Rename NEWS.debian, add note regarding squid3
transition in 12.04 (LP: 924739)
+ debian/rules
- Re-enable all hardening options lost in the squid->squid3
transition (LP: 986314)
+ squid3.resolvconf, debian/squid3.postinst, debian/squid3.postrm,
debian/squid3.preinst, debian/squid3.prerm:
- Convert init script to upstart
+ debian/patches/99-ubuntu-ssl-cert-snakeoil:
- Use snakeoil certificates.
+ debian/logrotate
- Use sar-reports rather than sarg-maint. (LP: 26616)
+ debian/patches/90-cf.data.ubuntu.dpatch:
- Add an example refresh pattern for debs.
(foundations-lucid-local-report spec)
+ Add disabled by default AppArmor profile (LP: 497790)
- debian/squid3.upstart: load profile in pre-start stanza
- add debian/usr.sbin.squid3 profile
- debian/rules:
+ install debian/usr.sbin.squid3, etc/apparmor.d/force-complain and
etc/apparmor.d/disable into $(INSTALLDIR)
+ use dh_apparmor
- debian/squid3.install: install etc/apparmor.d/disable, force-complain
and usr.sbin.squid3
- debian/squid3.preinst: disable profile on clean install or upgrades
from earlier than when we shipped the profile
+ debian/tests:
- Add autopkgtests.
* d/control: Add dependency package for squid -> squid3 (LP: #1211942).
* d/control: Add dh-apparmor to BD's.
squid3 (3.3.8-1) unstable; urgency=high
* Urgency high due to security fixes
* New upstream release
- Fixes security issues (Closes: #716743)
+ Buffer overflow in HTTP request handling (Ref: SQUID-2013:2,
CVE-2013-4115)
+ DoS in request processing (Ref: SQUID-2013:3, CVE-2013-4123)
- Includes PNG image used in error pages, with new copyright assignement
(Closes: #683255)
* Added /var/run/squid3 dir to host sockets in SMP configuration
(Closes: #710126)
* debian/control
- Bumped Standard-Version to 3.9.4, no change needed
Date: Wed, 14 Aug 2013 09:03:55 +0100
Changed-By: James Page <james.page at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/saucy/+source/squid3/3.3.8-1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Wed, 14 Aug 2013 09:03:55 +0100
Source: squid3
Binary: squid3 squid3-dbg squid3-common squidclient squid-cgi squid-purge squid
Architecture: source
Version: 3.3.8-1ubuntu1
Distribution: saucy
Urgency: high
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: James Page <james.page at ubuntu.com>
Description:
squid - dependency package from squid to squid3
squid-cgi - Full featured Web Proxy cache (HTTP proxy) - control CGI
squid-purge - Full featured Web Proxy cache (HTTP proxy) - control utility
squid3 - Full featured Web Proxy cache (HTTP proxy)
squid3-common - Full featured Web Proxy cache (HTTP proxy) - common files
squid3-dbg - Full featured Web Proxy cache (HTTP proxy) - Debug symbols
squidclient - Full featured Web Proxy cache (HTTP proxy) - control utility
Closes: 683255 710126 716743
Launchpad-Bugs-Fixed: 1211942
Changes:
squid3 (3.3.8-1ubuntu1) saucy; urgency=low
.
* Merge from Debian unstable, remaining changes:
+ debian/control:
- Update maintainer.
- Suggests apparmor (>= 2.3)
- Depends on ssl-cert ((>= 1.0-11ubuntu1), autopkgtests
+ debian/squid3.upstart
- Move ulimit command to script section so that it applies
to the started squid daemon. Thanks to Timur Irmatov (LP: 986159)
- Work around squid not handling SIGHUP by adding respawn to
upstart job. (LP: 978356)
+ debian/NEWS.Debian: Rename NEWS.debian, add note regarding squid3
transition in 12.04 (LP: 924739)
+ debian/rules
- Re-enable all hardening options lost in the squid->squid3
transition (LP: 986314)
+ squid3.resolvconf, debian/squid3.postinst, debian/squid3.postrm,
debian/squid3.preinst, debian/squid3.prerm:
- Convert init script to upstart
+ debian/patches/99-ubuntu-ssl-cert-snakeoil:
- Use snakeoil certificates.
+ debian/logrotate
- Use sar-reports rather than sarg-maint. (LP: 26616)
+ debian/patches/90-cf.data.ubuntu.dpatch:
- Add an example refresh pattern for debs.
(foundations-lucid-local-report spec)
+ Add disabled by default AppArmor profile (LP: 497790)
- debian/squid3.upstart: load profile in pre-start stanza
- add debian/usr.sbin.squid3 profile
- debian/rules:
+ install debian/usr.sbin.squid3, etc/apparmor.d/force-complain and
etc/apparmor.d/disable into $(INSTALLDIR)
+ use dh_apparmor
- debian/squid3.install: install etc/apparmor.d/disable, force-complain
and usr.sbin.squid3
- debian/squid3.preinst: disable profile on clean install or upgrades
from earlier than when we shipped the profile
+ debian/tests:
- Add autopkgtests.
* d/control: Add dependency package for squid -> squid3 (LP: #1211942).
* d/control: Add dh-apparmor to BD's.
.
squid3 (3.3.8-1) unstable; urgency=high
.
* Urgency high due to security fixes
.
* New upstream release
- Fixes security issues (Closes: #716743)
+ Buffer overflow in HTTP request handling (Ref: SQUID-2013:2,
CVE-2013-4115)
+ DoS in request processing (Ref: SQUID-2013:3, CVE-2013-4123)
- Includes PNG image used in error pages, with new copyright assignement
(Closes: #683255)
.
* Added /var/run/squid3 dir to host sockets in SMP configuration
(Closes: #710126)
.
* debian/control
- Bumped Standard-Version to 3.9.4, no change needed
Checksums-Sha1:
190e2cfb1cd1e337a447b1e67a44866449cf1b04 2347 squid3_3.3.8-1ubuntu1.dsc
127c8252577bce25b62cb0d05b0fef7f3f379c23 2992708 squid3_3.3.8.orig.tar.bz2
d48c5f037ad8c5f8e2a72654a3925b3c7055a14f 42374 squid3_3.3.8-1ubuntu1.debian.tar.gz
Checksums-Sha256:
88664f1b7e89d42891a29f7e6f75e9769d7de164c6b1509c3cc4daf2a2cacde9 2347 squid3_3.3.8-1ubuntu1.dsc
6411f344510e780f9e579851151278e1d02d8fe06a56abb1d97b1c53c61326a1 2992708 squid3_3.3.8.orig.tar.bz2
9061a9da4f047fcfe1e08acb13c08618c820588d579093b68a22c791e1d4836f 42374 squid3_3.3.8-1ubuntu1.debian.tar.gz
Files:
933d0864373da9e3298d11b908125c1c 2347 web optional squid3_3.3.8-1ubuntu1.dsc
ec1654d28e29bdd2ee342ffb655ecc72 2992708 web optional squid3_3.3.8.orig.tar.bz2
6f768947857d75829cb4dc9df9d25ce8 42374 web optional squid3_3.3.8-1ubuntu1.debian.tar.gz
Original-Maintainer: Luigi Gangitano <luigi at debian.org>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (GNU/Linux)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=bHK3
-----END PGP SIGNATURE-----
More information about the Saucy-changes
mailing list