diff options
| author | Sergey Lukin <sergej.lukin@gmail.com> | 2016-12-29 07:47:13 +0000 |
|---|---|---|
| committer | Leonardo Arena <rnalrd@alpinelinux.org> | 2016-12-29 09:29:45 +0000 |
| commit | e44ef2357f868cc8369def42649ab6fc1edbd63e (patch) | |
| tree | dfc61c785c0816c07abd1cf90ad501433737bf79 | |
| parent | 51458f4830c2da47954b397d85858f068261ca21 (diff) | |
| download | aports-e44ef2357f868cc8369def42649ab6fc1edbd63e.tar.bz2 aports-e44ef2357f868cc8369def42649ab6fc1edbd63e.tar.xz | |
main/squid: security upgrade to 3.5.23 - fixes #6580
CVE-2016-10002: Information disclosure in HTTP Request processing.
CVE-2016-10003: Information disclosure in Collapsed Forwarding.
There were no major changes from 3.5.20 to 3.5.23
http://www.squid-cache.org/Versions/v3/3.5/changesets/SQUID_3_5_21.html
http://www.squid-cache.org/Versions/v3/3.5/changesets/SQUID_3_5_22.html
http://www.squid-cache.org/Versions/v3/3.5/changesets/SQUID_3_5_23.html
| -rw-r--r-- | main/squid/APKBUILD | 20 |
1 files changed, 13 insertions, 7 deletions
diff --git a/main/squid/APKBUILD b/main/squid/APKBUILD index d20692618c..72181ae5fe 100644 --- a/main/squid/APKBUILD +++ b/main/squid/APKBUILD @@ -1,7 +1,8 @@ +# Contributor: Sergei Lukin <sergej.lukin@gmail.com> # Contributor: Carlo Landmeter <clandmeter@gmail.com> # Maintainer: Natanael Copa <ncopa@alpinelinux.org> pkgname=squid -pkgver=3.5.20 +pkgver=3.5.23 pkgrel=0 pkgdesc="A full-featured Web proxy cache server." url="http://www.squid-cache.org" @@ -14,6 +15,8 @@ depends="logrotate" makedepends="openssl-dev perl-dev autoconf automake heimdal-dev libtool libcap-dev linux-headers" subpackages="$pkgname-doc" +pkgusers="squid" +pkggroups="squid" linguas="af ar az bg ca cs da de el es et fa fi fr he hu hy id it ja ka ko lt lv ms nl oc pl pt ro ru sk sl sr sv th tr uk uz vi zh" langdir="/usr/share/squid/errors" @@ -26,10 +29,13 @@ source="http://www.squid-cache.org/Versions/v3/${pkgver%.*}/squid-${pkgver}.tar. $pkgname.logrotate " -pkgusers="squid" -pkggroups="squid" - _builddir="$srcdir"/$pkgname-$pkgver + +# secfixes: +# 3.5.23-r0: +# - CVE-2016-10002 +# - CVE-2016-10003 + prepare() { cd "$_builddir" for i in $source; do @@ -108,17 +114,17 @@ squid_kerb_auth() { install -d "$subpkgdir"/usr/lib/squid mv "$pkgdir"/usr/lib/squid/squid_kerb_auth "$subpkgdir"/usr/lib/squid/ } -md5sums="48fb18679a30606de98882528beab3a7 squid-3.5.20.tar.xz +md5sums="9b68f689e3d9578932b9c6a4041037c2 squid-3.5.23.tar.xz 9e71076799d334faba6f4954594e7b4a bug-3679.patch 4e42690c129399c84cbe36ab0c538615 squid.initd 73db59e6c1c242dbc748feeb116650e0 squid.confd 58823e0b86bc2dc71d270208b7b284b4 squid.logrotate" -sha256sums="37db73bd33ddd3503fe375bc3f2b47d9fb7309042e439ad3651f21d5dcf2d395 squid-3.5.20.tar.xz +sha256sums="fa4c0c99f41e92fe1330bed3968d176c6f47ef2e3aea2f83977d5501afa40bdb squid-3.5.23.tar.xz 6b08cd129ea5fef019c78f1818c628e1070fe767e362da14844396b671f5a18d bug-3679.patch fe33fa90b860437867bd2c1b083c0e77a6478f63e8998f093c0d466476df4a9b squid.initd 4012fc97d7ab653c8a73c4dac09751de80c847a90ee2483ddd41a04168cdeb2b squid.confd b6efdb3261c2e4b5074ef49160af8b96e65f934c7fd64b8954df48aa41cd9b67 squid.logrotate" -sha512sums="555e456d63bfe506e1cb84cd4857e900648382613181ff7fb70026e37d224b9b125b49e0a2e12cca63377427d33be7e9fbc3755c66a5370eab975e6ab3444bee squid-3.5.20.tar.xz +sha512sums="3f2b3df60fc0b2aab3d0d9e3489832d60d0aac8222f09ad2ff6afb95202b904f41f6530d713e7ce446c6f62b66f0cd792a6b12005d43c53fe68d2371f9caa880 squid-3.5.23.tar.xz b477397f205ba207502a42aae674c85cad85eec831158ea0834361d98ef09a0f103d7a847e101bdd0ece73bbdda9b545960edd5385042bd593733810977e292a bug-3679.patch 15d95f7d787be8c2e6619ef1661fd8aae8d2c1ede706748764644c7dc3d7c34515ef6e8b7543295fddc4e767bbd74a7cf8c42e77cf60b3d574ff11b3f6e336c9 squid.initd 7292661de344e8a87d855c83afce49511685d2680effab3afab110e45144c0117935f3bf73ab893c9e6d43f7fb5ba013635e24f6da6daf0eeb895ef2e9b5baa9 squid.confd |