SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for squid-debuginfo-6.12-1.2.x86_64.rpm :

* Mon Dec 09 2024 Adam Majer - Update to 6.12 - Fix validation of Digest auth header parameters- changes since squid-6.11: - Fix Kerberos detection when cross-compiling - Improve robustness of DNS code on reconfigure - Prevent slow memory leak in TCP DNS queries - Improve errors emitted when invalid ACLs are parsed
* Mon Nov 25 2024 Adam Majer - Disble ESI. The code is removed upstream in 7.x (bsc#1232485, CVE-2024-45802)
* Thu Jun 27 2024 Adam Majer - update to 6.10 - ESI: Disable by default (#1728) - Bug 5378: type mismatch in libTrie (#1830) (bsc#1227086, CVE-2024-37894) - testCacheManager: use cppunit exception tests (#1811) - testRandomUuid: use cppunit exception tests (#1814) - Docs: REQUIRED in ident_regex, proxy_auth_regex, ext_user_regex (#1818) - Fix build with clang v18 [-Wvla-cxx-extension] (#1813) (#1817)
* Tue May 28 2024 Adam Majer - update to 6.9 - Regression Bug 5349: basic_nis_auth build error: unterminated #ifndef - Bug 5069: Keep listening after getsockname() error - Bug 5360: FwdState::noteDestinationsEnd() assertion \"err\" - Reduce stale errno usage - Plug memory leak in handling cache manager requests - Fix error: template-id not allowed for constructor in C++20 - Improve release packaging automation- header_fixups.patch: upstreamed, removed- 9be86d8db5e8f40829374d26334d0bb5272c1afd.patch: upstreamed, removed- CVE-2024-33427.patch: fixes possible buffer overread leading to denial of service (bsc#1225417, CVE-2024-33427)
* Wed Mar 06 2024 Adam Majer - update to 6.8 - Fix marking of problematic cached IP addresses (#1691) - Bug 5344: mgr:config segfaults without logformat (#1680) - Fix infinite recursion when parsing HTTP chunks (#1553) (bsc#1216715, CVE-2024-25111)- changes in 6.7 - Bug 5337: workaround for crash on startup if -a option is used - Bug 5274: Successful tunnels logged as TCP_TUNNEL/500 - Fix crash when NTLM and Negotiate helpers are queried with no HTTP request - Fix SslBump memory leak when mimicking certificates with Authority Key Identifier - Fix memory leak on SslBump certificates with Authority Key Identifier extension - Fix a possible integer overflow in FTP Gateway - Extend cache_log_message to Bug 5187 and job invalidation BUGs - Remove incorrect beta version warning- squid.keyring: updated- header_fixups.patch: added- 9be86d8db5e8f40829374d26334d0bb5272c1afd.patch: don\'t throw on client errors
* Mon Feb 26 2024 Dominique Leuenberger - Use %patch -P N instead of deprecated %patchN.
* Thu Dec 28 2023 Sean Lewis - update to 6.6: - bug 5328: Fix ESI build with libxml2 v2.12.0 - Bug 5319: QOS Netfilter MARK preservation is always disabled - Bug 5318: peer_digest.cc:399: \"fetch->pd && receivedData.data\" - Bug 5317: FATAL attempt to read data from memory - Bug 5154: Do not open IPv6 sockets when IPv6 is disabled - FTP: Ignore credenials with a NUL-prefixed username - log_db_daemon: Fix DSN construction - Limit the number of allowed X-Forwarded-For hops (bsc#1217654, CVE-2023-50269) - Do not update StoreEntry expiration after errorAppendEntry() - improve handling of response sending errors (bsc#1219131, CVE-2024-23638)- changes in 6.5: - Bug 5309: frequent \"lowestOffset () <= target_offset\" assertion - Bug 4977: Remove mem_hdr::freeDataUpto() assertion - Fix handling of expanding HTTP header values (bsc#1219960, CVE-2024-25617) - Fix RFC 1123 date parsing (bsc#1217813, CVE-2023-49285) - Gracefully shutdown when helper process startup fails (bsc#1217815, CVE-2023-49286)
* Wed Oct 25 2023 Adam Majer - update to 6.4:
* security fixes: + Request/Response smuggling in HTTP/1.1 and ICAP (bsc#1216500, CVE-2023-46846) + Multiple issues in HTTP response caching (bsc#1216496, CVE-2023-5824) + Denial of Service in HTTP Digest Authentication (bsc#1216495, CVE-2023-46847) + Denial of Service in FTP (bsc#1216498, CVE-2023-46848) + Fix validation of certificates (bsc#1216803, CVE-2023-46724) + One-Byte Buffer OverRead in HTTP Request Header Parsing (bsc#1217274)
* Bug 5294: ERR_CANNOT_FORWARD returned instead of ERR_DNS_FAIL
* Bug 4981: Work around in-call job invalidation bugs
* basic_smb_lm_auth: fix \'no previous declaration\' warnings
* CacheManager: require /squid-internal-mgr/ URL path prefix
* ESI: Fix build [-Wsingle-bit-bitfield-constant-conversion]
* documentation changes
* Tue Sep 19 2023 Adam Majer - update to 6.3: - Bug 5294: ERR_CANNOT_FORWARD returned instead of ERR_DNS_FAIL - Bug 4981: Work around in-call job invalidation bugs - basic_smb_lm_auth: fix \'no previous declaration\' warnings - CacheManager: require /squid-internal-mgr/ URL path prefix - ESI: Fix build [-Wsingle-bit-bitfield-constant-conversion]
* Wed Aug 09 2023 Paolo Stivanin - update to 6.2 (bsc#1217825, CVE-2023-49288, bsc#1216497):
* Major UI changes: - Remove 8K limit for single access.log line - Add tls_key_log to report TLS communication secrets
* Minor UI changes: - Add %transport::>connection_id logformat code - Add paranoid_hit_validation directive - Report SMP store queues state (mgr:store_queues) - Addcache_log_message directive
* Developer Interest changes: - Replaced X-Cache and X-Cache-Lookup headers with Cache-Status - Reject HTTP/1.0 requests with unusual framing - codespell check added to source maintenance enforcement - Streamlined ./configure handling of optional libraries - Add –progress option to test-builds.sh - Remove layer-00-bootstrap from test script - Convert LRU map into a CLP map - Remove legacy context-based debugging in favor of CodeContext
* Removed features: - Remove unused cache_diff binary - Remove obsolete membanger test - Remove deprecated leakfinder (–enable-leakfinder)
* Tue May 09 2023 Adam Majer - update to 5.9:
* Improve reply_body_max_size matching accuracy
* fix gcc13 warning
* Tue May 02 2023 Adam Majer - partial revert of earlier \"fix PIDFile\" - move pidfile back to /run/squid.pid and not in the directory owned by squid. The purpose of /run/squid/ is to facilitate SMP worker\'s IPC and not for the PID file. The PID file can live just fine in /run since it\'s written by root. (bsc#1210960)
* Fri Mar 31 2023 Dirk Müller - update to 5.8:
* Bug 5162: mgr:index URL do not produce MGR_INDEX template
* Bug 5241: Block all non-localhost requests by default
* Bug 5241: Block to-localhost, to-link-local requests by default
* ext_kerberos_ldap_group_acl: Support -b with -D
* Fix ACL type typo in req_header, rep_header key-changing ERRORs
* ... and several compile fixes
* ... and some code cleanup and polishing
* Thu Mar 23 2023 Martin Liška - Enable LTO again as it survives tests now.
* Wed Jan 25 2023 Thorsten Kukuk - Disable NIS auth module (NIS is deprecated and get\'s currently removed)
* Tue Jan 03 2023 Stefan Schubert - Migration of PAM settings to /usr/lib/pam.d.
* Thu Sep 15 2022 Stefan Schubert - Migration to /usr/etc: Saving user changed configuration files in /etc and restoring them while an RPM update.
* Sun Sep 11 2022 Dirk Müller - update to 5.7: - Regression Fix: Typo in manager ACL (bsc#1203677, CVE-2022-41317) - Bug 5186: noteDestinationsEnd check failed: transportWait - Bug 5160: Test suite fails with -flto=auto - Bug 3193 pt2: NTLM decoder truncating strings (bsc#1203680, CVE-2022-41318) - Bug 5133: OpenSSL 3.0 support - ext_session_acl: fix TDB key lookup - forward_max_tries: Do not count discarded connections - ... and many compile and debugging fixes
* Mon Aug 29 2022 chrisAATTcomputersalat.de- fix PIDFile
* NOT needed in service file (squid.service: Can\'t open PID file /run/squid.pid)
* placed to tmpfilesdir
* Wed Jun 29 2022 Stefan Schubert - Moved logrotate files from user specific directory /etc/logrotate.d to vendor specific directory /usr/etc/logrotate.d.
* Fri Jun 24 2022 Adam Majer - Update to 5.6:
* Improve handling of Gopher responses (bsc#1200907, CVE-2021-46784)- Changes in 5.5:
* fixes regression Bug 5192: esi_parser default is incorrect
* Bug 5177: clientca certificates sent to https_port clients
* Bug 5090: Must(!request->pinnedConnection()) violation
* Kid restart leads to persistent queue overflows, delays/timeouts
* Thu Mar 31 2022 Adam Majer - Do not try to set special permissions for basic_pam_auth (bsc#1197649)
* Tue Mar 29 2022 Adam Majer - Fix upgrade path from squid 4.x where we replaced some symlinks with directories in pretrans section (bsc#1197333)- old_nettle_compat.patch: refresh patch
* Sat Feb 26 2022 Andreas Stieger - Update to 5.4.1:
* Bug 5055: FATAL FwdState::noteDestinationsEnd exception: opening
* code clean-ups and developer visible changes
* Tue Feb 08 2022 Paolo Stivanin - Update to 5.4:
* Bug 5190: Preserve configured order of intermediate CA certificate chain
* Bug 5188: Fix reconfiguration leaking tls-cert=... memory
* Bug 5187: Properly track (and mark) truncated store entries
* Bug 5134: assertion failed: Transients.cc:221: \"old == e\"
* Bug 5132: Close the tunnel if to-server conn closes after client
  
ICM