enterprise-support team mailing list archive
-
enterprise-support team
-
Mailing list archive
-
Message #10753
[Bug 2097411] [NEW] Merge squid from Debian unstable for plucky
Public bug reported:
Scheduled-For: ubuntu-25.02
A merge of squid appears to be available presently.
Upstream: 6.13
Debian: 6.12-1
Ubuntu: 6.10-1ubuntu2
If it turns out this needs a sync rather than a merge, please change the
tag 'needs-merge' to 'needs-sync', and (optionally) update the title as
desired.
### New Debian Changes ###
squid (6.12-1) unstable; urgency=high
[ Amos Jeffries <amosjeffries@xxxxxxxxxxxxxxx> ]
* New Upstream Release 6.12 (Closes: #1063877)
* Disable ESI feature support
Fixes: CVE-2024-45802. SQUID-2024:4
* debian/{control,rules}
- Migrate from lsb-release to os-release.
- Remove deprecated lsb-base dependency. It has been
replaced by sysvinit-utils in essential packages.
- Polish user visible package descriptions.
- Restructure rules special-cases for easier team maintenance.
* Use alternatives system for squid binary
[ Luigi Gangitano <luigi@xxxxxxxxxx> ]
* debian/control
- Add Rules-Requires-Root: binary-targets
- Bumped Standards-Version to 4.7.0, no change needed
* debian/patches/*
- Refreshed patches
- Added description to 0006-upstream-807ae4df2164defbb5f59b99282e24010b4a0b85.patch
* debian/upstream/signing-key.asc
- Added Francesco Chemolli's key to the authorized keys (Closes: #1063877)
[ Sven Auhagen <sven.auhagen@xxxxxxxxxxxx> ]
* debian/squid.postinst
- Check if cache folder exists before using chown
-- Luigi Gangitano <luigi@xxxxxxxxxx> Mon, 28 Oct 2024 11:04:20 +0100
### Old Ubuntu Delta ###
squid (6.10-1ubuntu1) oracular; urgency=medium
* Merge with Debian unstable (LP: #2073322). Remaining changes:
- d/usr.sbin.squid: Add sections for squid-deb-proxy and
squidguard
- d/p/90-cf.data.ubuntu.patch: Add refresh patterns for deb
packaging
- Use snakeoil certificates:
+ d/control: add ssl-cert to dependencies
+ d/p/99-ubuntu-ssl-cert-snakeoil.patch: add a note about ssl
to the default config file
- d/NEWS: drop the NIS basic auth helper (LP #1895694)
- d/p/0009-Fix-Werror-alloc-size-larger-than-on-GCC-12.patch:
Fix FTBFS due to -Werror=alloc-size-larger-than on GCC 12.
- d/rules: halt build upon test failures.
- d/rules: do not include additional configuration files during
build time tests. This would lead to test failures due to missing
paths.
- d/t/upstream-test-suite: use installed squid binary for
autopkgtest config file checks.
- d/p/0010-Fix-Werror-sign-compare-on-GCC-13.patch: fix comparison
between signed and unsigned values.
- d/rules: disable LTO related compilation errors for ppc64el builds.
- d/source_squid.py, d/rules: Add apport hook (LP #676141)
* Dropped changes:
- d/t/upstream-test-suite: adjust autopkgtests following dpkg
changes enabling ELF metadata. (LP #2071468)
[ LP bug fixed in dpkg,binutils ]
- SECURITY UPDATE: DoS in ESI processing using multi-byte characters
+ debian/patches/CVE-2024-37894.patch: fix variable datatype to handle
variables names outside standard ASCII characters
+ CVE-2024-37894
[ Fixed in 6.10 ]
-- Renan Rodrigo <renanrodrigo@xxxxxxxxxxxxx> Thu, 12 Sep 2024
16:23:16 -0300
** Affects: squid (Ubuntu)
Importance: Undecided
Status: New
** Affects: squid (Ubuntu Plucky)
Importance: Undecided
Status: New
** Tags: needs-merge upgrade-software-version
** Also affects: squid (Ubuntu Plucky)
Importance: Undecided
Status: New
** Changed in: squid (Ubuntu Plucky)
Milestone: None => ubuntu-25.02
** Description changed:
- Scheduled-For: Backlog
+ Scheduled-For: ubuntu-25.02
A merge of squid appears to be available presently.
-
Upstream: 6.13
- Debian: 6.12-1
+ Debian: 6.12-1
Ubuntu: 6.10-1ubuntu2
+ If it turns out this needs a sync rather than a merge, please change the
+ tag 'needs-merge' to 'needs-sync', and (optionally) update the title as
+ desired.
- If it turns out this needs a sync rather than a merge, please change the tag 'needs-merge' to 'needs-sync', and (optionally) update the title as desired.
+ ### New Debian Changes ###
- ### New Debian Changes ###squid (6.12-1) unstable; urgency=high
+ squid (6.12-1) unstable; urgency=high
- [ Amos Jeffries <amosjeffries@xxxxxxxxxxxxxxx> ]
- * New Upstream Release 6.12 (Closes: #1063877)
+ [ Amos Jeffries <amosjeffries@xxxxxxxxxxxxxxx> ]
+ * New Upstream Release 6.12 (Closes: #1063877)
- * Disable ESI feature support
- Fixes: CVE-2024-45802. SQUID-2024:4
+ * Disable ESI feature support
+ Fixes: CVE-2024-45802. SQUID-2024:4
- * debian/{control,rules}
- - Migrate from lsb-release to os-release.
- - Remove deprecated lsb-base dependency. It has been
- replaced by sysvinit-utils in essential packages.
- - Polish user visible package descriptions.
- - Restructure rules special-cases for easier team maintenance.
+ * debian/{control,rules}
+ - Migrate from lsb-release to os-release.
+ - Remove deprecated lsb-base dependency. It has been
+ replaced by sysvinit-utils in essential packages.
+ - Polish user visible package descriptions.
+ - Restructure rules special-cases for easier team maintenance.
- * Use alternatives system for squid binary
+ * Use alternatives system for squid binary
- [ Luigi Gangitano <luigi@xxxxxxxxxx> ]
- * debian/control
- - Add Rules-Requires-Root: binary-targets
- - Bumped Standards-Version to 4.7.0, no change needed
+ [ Luigi Gangitano <luigi@xxxxxxxxxx> ]
+ * debian/control
+ - Add Rules-Requires-Root: binary-targets
+ - Bumped Standards-Version to 4.7.0, no change needed
- * debian/patches/*
- - Refreshed patches
- - Added description to 0006-upstream-807ae4df2164defbb5f59b99282e24010b4a0b85.patch
+ * debian/patches/*
+ - Refreshed patches
+ - Added description to 0006-upstream-807ae4df2164defbb5f59b99282e24010b4a0b85.patch
- * debian/upstream/signing-key.asc
- - Added Francesco Chemolli's key to the authorized keys (Closes: #1063877)
+ * debian/upstream/signing-key.asc
+ - Added Francesco Chemolli's key to the authorized keys (Closes: #1063877)
- [ Sven Auhagen <sven.auhagen@xxxxxxxxxxxx> ]
- * debian/squid.postinst
- - Check if cache folder exists before using chown
+ [ Sven Auhagen <sven.auhagen@xxxxxxxxxxxx> ]
+ * debian/squid.postinst
+ - Check if cache folder exists before using chown
- -- Luigi Gangitano <luigi@xxxxxxxxxx> Mon, 28 Oct 2024 11:04:20 +0100
-
- squid (6.10-1) unstable; urgency=high
-
- [ Amos Jeffries <amosjeffries@xxxxxxxxxxxxxxx> ]
- * New Upstream Release 6.10
- Fixes: CVE-2024-37894. SQUID-2024:3 (Closes: #1074284)
-
- -- Luigi Gangitano <luigi@xxxxxxxxxx> Mon, 1 Jul 2024 12:04:20 +0200
-
- squid (6.9-1) unstable; urgency=medium
-
- [ Amos Jeffries <amosjeffries@xxxxxxxxxxxxxxx> ]
- * New Upstream Release 6.9
-
- -- Luigi Gangitano <luigi@xxxxxxxxxx> Tue, 9 Apr 2024 15:04:20 +0200
-
- squid (6.8-1) unstable; urgency=high
-
- [ Amos Jeffries <amosjeffries@xxxxxxxxxxxxxxx> ]
- * New Upstream Release 6.8
- Fixes: CVE-2024-25111. SQUID-2024:1
-
- [ Luigi Gangitano <luigi@xxxxxxxxxx> ]
- * debian/control
- - Migrate from pkg-config to pkgconf
-
- -- Luigi Gangitano <luigi@xxxxxxxxxx> Mon, 4 Mar 2024 18:04:20 +0100
-
- squid (6.6-1) unstable; urgency=high
-
- [ Amos Jeffries <amosjeffries@xxxxxxxxxxxxxxx> ]
- * New Upstream Release 6.6
- Fixes: CVE-2023-50269. SQUID-2023:10 (Closes: #1058721)
- Fixes: CVE-2024-23638. SQUID-2023:11
-
- [ Luigi Gangitano <luigi@xxxxxxxxxx> ]
- * debian/patches/
- - Refreshed patches
-
- * debian/squid-openssl.dirs
- - Stop creating empty /lib/systemd/system directory (Closes: #1058860)
-
- * debian/changelog
- - Fixed typo in CVE reference
-
- -- Luigi Gangitano <luigi@xxxxxxxxxx> Thu, 18 Jan 2024 13:04:20 +0100
-
- squid (6.5-1) unstable; urgency=high
-
- [ Amos Jeffries <amosjeffries@xxxxxxxxxxxxxxx> ]
- * New Upstream Release 6.5
- Fixes: CVE-2023-46846. SQUID-2023:1 (Closes: #1054537)
- Fixes: CVE-2023-5824. SQUID-2023:2 (Closes: #1055249)
- Fixes: CVE-2023-46847. SQUID-2023:3 (Closes: #1055250)
- Fixes: CVE-2023-46724. SQUID-2023:4 (Closes: #1055252)
- Fixes: CVE-2023-46848. SQUID-2023:5 (Closes: #1055251)
- Fixes: CVE-2019-18860. SQUID-2023:6
- Fixes: CVE-2023-49285. SQUID-2023:7
- Fixes: CVE-2023-49286. SQUID-2023:8
- Fixes: CVE-2024-25617. SQUID-2024:2
-
- * Update debian/tests/upstream-test-suite for new version (Closes:
- #1053557)
-
- -- Luigi Gangitano <luigi@xxxxxxxxxx> Thu, 9 Nov 2023 15:04:20 +0100
-
- squid (6.3-1) unstable; urgency=medium
+ -- Luigi Gangitano <luigi@xxxxxxxxxx> Mon, 28 Oct 2024 11:04:20 +0100
- ### Old Ubuntu Delta ###squid (6.10-1ubuntu1) oracular; urgency=medium
+ ### Old Ubuntu Delta ###
- * Merge with Debian unstable (LP: #2073322). Remaining changes:
- - d/usr.sbin.squid: Add sections for squid-deb-proxy and
- squidguard
- - d/p/90-cf.data.ubuntu.patch: Add refresh patterns for deb
- packaging
- - Use snakeoil certificates:
- + d/control: add ssl-cert to dependencies
- + d/p/99-ubuntu-ssl-cert-snakeoil.patch: add a note about ssl
- to the default config file
- - d/NEWS: drop the NIS basic auth helper (LP #1895694)
- - d/p/0009-Fix-Werror-alloc-size-larger-than-on-GCC-12.patch:
- Fix FTBFS due to -Werror=alloc-size-larger-than on GCC 12.
- - d/rules: halt build upon test failures.
- - d/rules: do not include additional configuration files during
- build time tests. This would lead to test failures due to missing
- paths.
- - d/t/upstream-test-suite: use installed squid binary for
- autopkgtest config file checks.
- - d/p/0010-Fix-Werror-sign-compare-on-GCC-13.patch: fix comparison
- between signed and unsigned values.
- - d/rules: disable LTO related compilation errors for ppc64el builds.
- - d/source_squid.py, d/rules: Add apport hook (LP #676141)
- * Dropped changes:
- - d/t/upstream-test-suite: adjust autopkgtests following dpkg
- changes enabling ELF metadata. (LP #2071468)
- [ LP bug fixed in dpkg,binutils ]
- - SECURITY UPDATE: DoS in ESI processing using multi-byte characters
- + debian/patches/CVE-2024-37894.patch: fix variable datatype to handle
- variables names outside standard ASCII characters
- + CVE-2024-37894
- [ Fixed in 6.10 ]
+ squid (6.10-1ubuntu1) oracular; urgency=medium
- -- Renan Rodrigo <renanrodrigo@xxxxxxxxxxxxx> Thu, 12 Sep 2024
+ * Merge with Debian unstable (LP: #2073322). Remaining changes:
+ - d/usr.sbin.squid: Add sections for squid-deb-proxy and
+ squidguard
+ - d/p/90-cf.data.ubuntu.patch: Add refresh patterns for deb
+ packaging
+ - Use snakeoil certificates:
+ + d/control: add ssl-cert to dependencies
+ + d/p/99-ubuntu-ssl-cert-snakeoil.patch: add a note about ssl
+ to the default config file
+ - d/NEWS: drop the NIS basic auth helper (LP #1895694)
+ - d/p/0009-Fix-Werror-alloc-size-larger-than-on-GCC-12.patch:
+ Fix FTBFS due to -Werror=alloc-size-larger-than on GCC 12.
+ - d/rules: halt build upon test failures.
+ - d/rules: do not include additional configuration files during
+ build time tests. This would lead to test failures due to missing
+ paths.
+ - d/t/upstream-test-suite: use installed squid binary for
+ autopkgtest config file checks.
+ - d/p/0010-Fix-Werror-sign-compare-on-GCC-13.patch: fix comparison
+ between signed and unsigned values.
+ - d/rules: disable LTO related compilation errors for ppc64el builds.
+ - d/source_squid.py, d/rules: Add apport hook (LP #676141)
+ * Dropped changes:
+ - d/t/upstream-test-suite: adjust autopkgtests following dpkg
+ changes enabling ELF metadata. (LP #2071468)
+ [ LP bug fixed in dpkg,binutils ]
+ - SECURITY UPDATE: DoS in ESI processing using multi-byte characters
+ + debian/patches/CVE-2024-37894.patch: fix variable datatype to handle
+ variables names outside standard ASCII characters
+ + CVE-2024-37894
+ [ Fixed in 6.10 ]
+
+ -- Renan Rodrigo <renanrodrigo@xxxxxxxxxxxxx> Thu, 12 Sep 2024
16:23:16 -0300
--
You received this bug notification because you are a member of Ubuntu
Server/Client Support Team, which is subscribed to squid in Ubuntu.
Matching subscriptions: Ubuntu Server/Client Support Team
https://bugs.launchpad.net/bugs/2097411
Title:
Merge squid from Debian unstable for plucky
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/squid/+bug/2097411/+subscriptions
Follow ups
