Bug 215416 - www/squid: update to 3.5.23
Summary: www/squid: update to 3.5.23
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Only Me
Assignee: Jason Unovitch
URL:
Keywords: security
Depends on:
Blocks:
 
Reported: 2016-12-19 14:21 UTC by timp87
Modified: 2016-12-23 03:54 UTC (History)
1 user (show)

See Also:
junovitch: merge-quarterly+


Attachments
port patch (3.13 KB, patch)
2016-12-19 14:21 UTC, timp87
timp87: maintainer-approval+
Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description timp87 2016-12-19 14:21:42 UTC
Created attachment 178103 [details]
port patch

- Update to 3.5.23
- Spell CHOSEN_COMPILER_TYPE correctly
- Remove upstreamed patch (IPv6 + PF crash)
- Add --enable-zph-qos option to default set (http://wiki.squid-cache.org/Features/QualityOfService)
Comment 1 commit-hook freebsd_committer 2016-12-23 02:52:31 UTC
A commit references this bug:

Author: junovitch
Date: Fri Dec 23 02:52:04 UTC 2016
New revision: 429215
URL: https://svnweb.freebsd.org/changeset/ports/429215

Log:
  Document information disclosure CVEs in SQUID-2016:10 and SQUID-2016:11

  PR:		215416
  PR:		215418
  Security:	CVE-2016-10002
  Security:	CVE-2016-10003
  Security:	https://vuxml.FreeBSD.org/freebsd/41f8af15-c8b9-11e6-ae1b-002590263bf5.html

Changes:
  head/security/vuxml/vuln.xml
Comment 2 commit-hook freebsd_committer 2016-12-23 03:42:14 UTC
A commit references this bug:

Author: junovitch
Date: Fri Dec 23 03:41:52 UTC 2016
New revision: 429217
URL: https://svnweb.freebsd.org/changeset/ports/429217

Log:
  www/squid: update 3.5.22 -> 3.5.23

  - Spell CHOSEN_COMPILER_TYPE correctly
  - Remove upstreamed patch (IPv6 + PF crash)
  - Add --enable-zph-qos option to default set
    http://wiki.squid-cache.org/Features/QualityOfService

  PR:		215416
  Submitted by:	Pavel Timofeev <timp87@gmail.com> (maintainer)
  Security:	CVE-2016-10002
  Security:	CVE-2016-10003
  Security:	https://vuxml.FreeBSD.org/freebsd/41f8af15-c8b9-11e6-ae1b-002590263bf5.html
  MFH:		2016Q4

Changes:
  head/www/squid/Makefile
  head/www/squid/distinfo
  head/www/squid/files/patch-src__ip__Intercept.cc
Comment 3 commit-hook freebsd_committer 2016-12-23 03:47:20 UTC
A commit references this bug:

Author: junovitch
Date: Fri Dec 23 03:46:35 UTC 2016
New revision: 429218
URL: https://svnweb.freebsd.org/changeset/ports/429218

Log:
  MFH: r427008 r427389 (www/squid only) r429217

  www/squid: update 3.5.22 -> 3.5.23

  - Switch to options helpers
  - Mark as not openssl-devel ready
  - Spell CHOSEN_COMPILER_TYPE correctly
  - Remove upstreamed patch (IPv6 + PF crash)
  - Add --enable-zph-qos option to default set
    http://wiki.squid-cache.org/Features/QualityOfService

  PR:		215416
  Submitted by:	Pavel Timofeev <timp87@gmail.com> (maintainer)
  Security:	CVE-2016-10002
  Security:	CVE-2016-10003
  Security:	https://vuxml.FreeBSD.org/freebsd/41f8af15-c8b9-11e6-ae1b-002590263bf5.html
  Approved by:	ports-secteam (with hat)

Changes:
_U  branches/2016Q4/
  branches/2016Q4/www/squid/Makefile
  branches/2016Q4/www/squid/distinfo
  branches/2016Q4/www/squid/files/patch-src__ip__Intercept.cc
Comment 4 Jason Unovitch freebsd_committer 2016-12-23 03:54:12 UTC
As always, thank you Pavel!