pkgsrc.se | The NetBSD package collection

./www/squid4, Post-Harvest_cached WWW proxy cache and accelerator

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: pkgsrc-2021Q1, Version: 4.15, Package name: squid-4.15, Maintainer: pkgsrc-users

Squid is a fully-featured HTTP/1.0 proxy with partial HTTP/1.1 support
The 4 series brings many new features and upgrades to the basic
networking protocols. A short list of the major new features is:

Squid 4 represents a new feature release above 3.5.

The most important of these new features are:

* Configurable helper queue size
* Helper concurrency channels changes
* SSL support removal
* Helper Binary Changes
* Secure ICAP
* Improved SMP support
* Improved process management
* Initial GnuTLS support
* ESI Custom Parser removal

Package options: inet6, openssl, snmp, squid-backend-aufs, squid-backend-diskd, squid-backend-ufs, squid-esi, squid-ipf, squid-pam-helper, squid-unlinkd

Master sites: (Expand)

SHA1: 60bda34ba39657e2d870c8c1d2acece8a69c3075
RMD160: 8345df992154ab72d566036f5f284188a8352aa6
Filesize: 2396.656 KB

Version history: (Expand)

(2021-05-31) Updated to version: squid-4.15
(2021-03-30) Package added to pkgsrc.se, version squid-4.14 (created)

CVS history: (Expand)

2021-05-31 15:28:45 by Benny Siegert | Files touched by this commit (2) | Package updated

Log message:
Pullup ticket #6465 - requested by taca
www/squid4: security fix

Revisions pulled up:
- www/squid4/Makefile                                           1.18
- www/squid4/distinfo                                           1.11

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Mon May 10 14:22:57 UTC 2021

   Modified Files:
   	pkgsrc/www/squid4: Makefile distinfo

   Log message:
   www/squid4: update to 4.15

   This release fixes these security issues from prior release.

   * SQUID-2020:11 HTTP Request Smuggling
     (CVE-2020-25097)
   * SQUID-2021:1 Denial of Service in URN processing
     (CVE-2021-28651)
   * SQUID-2021:2 Denial of Service in HTTP Response Processing
     (CVE-2021-28662)
   * SQUID-2021:3 Denial of Service issue in Cache Manager
     (CVE-2021-28652)
   * SQUID-2021:4 Multiple issues in HTTP Range header
     (CVE-2021-31806, CVE-2021-31807, CVE-2021-31808)
   * SQUID-2021:5 Denial of Service in HTTP Response Processing
     (CVE pending allocation)

   Changes in squid-4.15 (10 May 2021):

   	- Bug 5112: Excessively loud chunked reply parsing error reporting
   	- Bug 5106: Broken cache manager URL parsing
   	- Bug 5104: Memory leak in RFC 2169 response parsing
   	- Bug 3556: "FD ... is not an open socket" for accept() problems
   	- Profiling: CPU timing implemented for MAC non-x86
   	- Fix HttpHeaderStats definition to include hoErrorDetail
   	- Fix Squid-to-client write_timeout triggers client_lifetime timeout
   	- Limit HeaderLookupTable_t::lookup() to BadHdr and specific IDs
   	- Handle more Range requests
   	- Handle more partial responses
   	- Stop processing a response if the Store entry is gone
   	- ... and some portability fixes
   	- ... and some documentation updates