Merge squid from Debian unstable for oracular
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
squid (Ubuntu) |
Fix Released
|
Undecided
|
Athos Ribeiro |
Bug Description
Upstream: tbd
Debian: 6.9-1
Ubuntu: 6.6-1ubuntu5
Debian does new releases regularly, so it's likely there will be newer versions available before FF that we can pick up if this merge is done later in the cycle.
If it turns out this needs a sync rather than a merge, please change the tag 'needs-merge' to 'needs-sync', and (optionally) update the title as desired.
If this merge pulls in a new upstream version, also consider adding an entry to the Oracular Release Notes: https:/
### New Debian Changes ###
squid (6.9-1) unstable; urgency=medium
[ Amos Jeffries <email address hidden> ]
* New Upstream Release 6.9
-- Luigi Gangitano <email address hidden> Tue, 9 Apr 2024 15:04:20 +0200
squid (6.8-1) unstable; urgency=high
[ Amos Jeffries <email address hidden> ]
* New Upstream Release 6.8
Fixes: CVE-2024-25111. SQUID-2024:1
[ Luigi Gangitano <email address hidden> ]
* debian/control
- Migrate from pkg-config to pkgconf
-- Luigi Gangitano <email address hidden> Mon, 4 Mar 2024 18:04:20 +0100
squid (6.6-1) unstable; urgency=high
[ Amos Jeffries <email address hidden> ]
* New Upstream Release 6.6
Fixes: CVE-2023-50269. SQUID-2023:10 (Closes: #1058721)
Fixes: CVE-2024-23638. SQUID-2023:11
[ Luigi Gangitano <email address hidden> ]
* debian/patches/
- Refreshed patches
* debian/
- Stop creating empty /lib/systemd/system directory (Closes: #1058860)
* debian/changelog
- Fixed typo in CVE reference
-- Luigi Gangitano <email address hidden> Thu, 18 Jan 2024 13:04:20 +0100
squid (6.5-1) unstable; urgency=high
[ Amos Jeffries <email address hidden> ]
* New Upstream Release 6.5
Fixes: CVE-2023-46846. SQUID-2023:1 (Closes: #1054537)
Fixes: CVE-2023-5824. SQUID-2023:2 (Closes: #1055249)
Fixes: CVE-2023-46847. SQUID-2023:3 (Closes: #1055250)
Fixes: CVE-2023-46724. SQUID-2023:4 (Closes: #1055252)
Fixes: CVE-2023-46848. SQUID-2023:5 (Closes: #1055251)
Fixes: CVE-2019-18860. SQUID-2023:6
Fixes: CVE-2023-49285. SQUID-2023:7
Fixes: CVE-2023-49286. SQUID-2023:8
Fixes: CVE-2024-25617. SQUID-2024:2
* Update debian/
-- Luigi Gangitano <email address hidden> Thu, 9 Nov 2023 15:04:20 +0100
squid (6.3-1) unstable; urgency=medium
[ Amos Jeffries <email address hidden> ]
* New Upstream version 6.3 (Closes: #1049926, #1043505)
* debian/patches/
- remove 0007-ftbfs-
-- Luigi Gangitano <email address hidden> Thu, 28 Sep 2023 16:04:20 +0200
squid (6.1-2) unstable; urgency=low
[ Amos Jeffries <email address hidden> ]
* debian/patches/
- add 0007-ftbfs-
-- Luigi Gangitano <email address hidden> Thu, 13 Jul 2023 13:04:20 +0200
squid (6.1-1) unstable; urgency=medium
[ Amos Jeffries <email address hidden> ]
* debian/
- New Upstream Release
* debian/patches/
- refresh for new upstream version
- add 0006-upstream-
- remove 0003-installed-
- remove 1f13f721263a4cc
- remove edad3f150de8af0
[ Luigi Gangitano <email address hidden> ]
* debian/patches/
- add Fordwarded tag
* debian/control
- Bumped Standards-Version to 4.6.2, no change needed
-- Luigi Gangitano <email address hidden> Mon, 10 Jul 2023 11:04:20 +0200
squid (5.7-2) unstable; urgency=medium
* Add a couple of upstream picked patches to fix some issues on 5.7
that upstream has fixed on 5.8.
### Old Ubuntu Delta ###
squid (6.6-1ubuntu5) noble; urgency=medium
* No-change rebuild for CVE-2024-3094
-- William Grant <email address hidden> Mon, 01 Apr 2024 19:03:50 +1100
squid (6.6-1ubuntu4) noble; urgency=medium
* SECURITY UPDATE: DoS via chunked decoder uncontrolled recursion bug
- debian/
src/http.cc, src/http.h.
- CVE-2024-25111
-- Marc Deslauriers <email address hidden> Thu, 14 Mar 2024 10:36:04 -0400
squid (6.6-1ubuntu3) noble; urgency=medium
* No-change rebuild against libcom-err2
-- Steve Langasek <email address hidden> Tue, 12 Mar 2024 20:34:17 +0000
squid (6.6-1ubuntu2) noble; urgency=medium
* No-change rebuild against libssl3t64
-- Steve Langasek <email address hidden> Mon, 04 Mar 2024 21:25:34 +0000
squid (6.6-1ubuntu1) noble; urgency=medium
* Merge with Debian unstable (LP: #2055179). Remaining changes:
- d/usr.sbin.squid: Add sections for squid-deb-proxy and
squidguard
- d/p/90-
packaging
- Use snakeoil certificates:
+ d/control: add ssl-cert to dependencies
+ d/p/99-
to the default config file
- d/NEWS: drop the NIS basic auth helper (LP #1895694)
- d/p/0009-
Fix FTBFS due to -Werror=
- d/rules: halt build upon test failures.
- d/rules: do not include additional configuration files during
build time tests. This would lead to test failures due to missing
paths.
- d/t/upstream-
autopkgtest config file checks.
- d/p/0010-
between signed and unsigned values.
- d/rules: disable LTO related compilation errors for ppc64el builds.
- d/source_squid.py, d/squid-
(LP #676141)
* Dropped changes:
- SECURITY UPDATE: denial of service in HTTP request parsing
- debian/
limit as error when exceeded in src/ClientReque
- CVE-2023-50269
[ Fixed upstream in 6.6 ]
-- Athos Ribeiro <email address hidden> Tue, 27 Feb 2024 12:25:05 -0300
Related branches
- git-ubuntu bot: Approve
- Andreas Hasenack: Approve
- Canonical Server Reporter: Pending requested
- Canonical Server packageset reviewers: Pending requested
-
Diff: 1572 lines (+1318/-4) (has conflicts)12 files modifieddebian/NEWS (+7/-0)
debian/changelog (+1054/-0)
debian/control (+3/-2)
debian/patches/0009-Fix-Werror-alloc-size-larger-than-on-GCC-12.patch (+65/-0)
debian/patches/0010-Fix-Werror-sign-compare-on-GCC-13.patch (+24/-0)
debian/patches/90-cf.data.ubuntu.patch (+21/-0)
debian/patches/99-ubuntu-ssl-cert-snakeoil.patch (+28/-0)
debian/patches/series (+4/-0)
debian/rules (+19/-2)
debian/source_squid.py (+54/-0)
debian/tests/upstream-test-suite (+12/-0)
debian/usr.sbin.squid (+27/-0)
CVE References
Changed in squid (Ubuntu): | |
milestone: | none → ubuntu-24.07 |
Changed in squid (Ubuntu): | |
assignee: | nobody → Athos Ribeiro (athos-ribeiro) |
Changed in squid (Ubuntu): | |
status: | New → In Progress |
Changed in squid (Ubuntu): | |
status: | In Progress → Fix Committed |
This bug was fixed in the package squid - 6.9-1ubuntu1
---------------
squid (6.9-1ubuntu1) oracular; urgency=medium
* Merge with Debian unstable (LP: #2064466). Remaining changes: cf.data. ubuntu. patch: Add refresh patterns for deb ubuntu- ssl-cert- snakeoil. patch: add a note about ssl Fix-Werror- alloc-size- larger- than-on- GCC-12. patch: alloc-size- larger- than on GCC 12. test-suite: use installed squid binary for Fix-Werror- sign-compare- on-GCC- 13.patch: fix comparison common. install: Add apport hook patches/ CVE-2024- 25111.patch: fix infinite recursion in
src/http. cc, src/http.h. test-suite: adjust autopkgtests following dpkg
- d/usr.sbin.squid: Add sections for squid-deb-proxy and
squidguard
- d/p/90-
packaging
- Use snakeoil certificates:
+ d/control: add ssl-cert to dependencies
+ d/p/99-
to the default config file
- d/NEWS: drop the NIS basic auth helper (LP #1895694)
- d/p/0009-
Fix FTBFS due to -Werror=
- d/rules: halt build upon test failures.
- d/rules: do not include additional configuration files during
build time tests. This would lead to test failures due to missing
paths.
- d/t/upstream-
autopkgtest config file checks.
- d/p/0010-
between signed and unsigned values.
- d/rules: disable LTO related compilation errors for ppc64el builds.
- d/source_squid.py, d/squid-
(LP #676141)
* Dropped changes:
- SECURITY UPDATE: DoS via chunked decoder uncontrolled recursion bug
+ debian/
+ CVE-2024-25111
[ Fixed in 6.8 ]
* New changes:
- d/t/upstream-
changes enabling ELF metadata. (LP: #2071468)
squid (6.9-1) unstable; urgency=medium
[ Amos Jeffries <email address hidden> ]
* New Upstream Release 6.9
squid (6.8-1) unstable; urgency=high
[ Amos Jeffries <email address hidden> ]
* New Upstream Release 6.8
Fixes: CVE-2024-25111. SQUID-2024:1
[ Luigi Gangitano <email address hidden> ]
* debian/control
- Migrate from pkg-config to pkgconf
-- Athos Ribeiro <email address hidden> Tue, 02 Jul 2024 14:21:39 -0300