Hello community, here is the log from the commit of package squid3 for openSUSE:Factory checked in at Mon Sep 12 10:37:04 CEST 2011.
-------- --- squid3/squid3.changes 2011-08-18 06:36:10.000000000 +0200 +++ /mounts/work_src_done/STABLE/squid3/squid3.changes 2011-08-30 17:55:09.000000000 +0200 @@ -1,0 +2,27 @@ +Tue Aug 30 15:44:50 UTC 2011 - [email protected] + +- update to 3.1.15 + - Regression fix: vhost and defaultsite causing vport to be ignored + - Regression Bug 3295: broken escaping in rfc1738_do_escape + - Bug #3232: fails to compile with OpenSSL v1.0.0 + - Bug #3222: cache_peer name is not logging on CONNECT + - Bug #3131: fd_table[fd].closing() assert + from ConnStateData::noteMoreBodySpaceAvailable() + - Bug #3217: "!fd_table[fd].closing()" + from ServerStateData::noteMoreBodySpaceAvailable + - Bug #3213: https sites (CONNECT) not open when using NTLM + - Bug #3114: Memory leak in SSL certificate verify code + - Bug #3107: ncsa_auth DES silently truncates passwords to 8 bytes + - Bug #2662: cf_gen failure when cross compiling + - Bug #2655: passing wrong the username to the url_rewrite_program + - Bug #2495: ignore whitespace prefix on config lines + - Bug #2051: 'default' cache_peer option does not match documentation + - Bug #1842: Optimize order of tests in peerWouldBePinged() and peerHTTPOkay() + - Bug #1791: timestampsSet does not validate Date: if server sends very old date + - Correct parsing of large Gopher indexes + - Enable negative cacheing on unknown or -1 expiry timestamp + - Remove hierarchy_stoplist default value + - Migrate cf_gen tool from C-style to C++ + - ... and several documentation and compiler warning fixes + +------------------------------------------------------------------- calling whatdependson for head-i586 Old: ---- squid-3.1.14.tar.bz2 New: ---- squid-3.1.15.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ squid3.spec ++++++ --- /var/tmp/diff_new_pack.38QBDx/_old 2011-09-12 10:36:58.000000000 +0200 +++ /var/tmp/diff_new_pack.38QBDx/_new 2011-09-12 10:36:58.000000000 +0200 @@ -21,8 +21,8 @@ Name: squid3 Summary: Squid Version 3 WWW Proxy Server -Version: 3.1.14 -Release: 4 +Version: 3.1.15 +Release: 1 License: GPLv2+ Group: Productivity/Networking/Web/Proxy AutoReqProv: on ++++++ RELEASENOTES.html ++++++ --- /var/tmp/diff_new_pack.38QBDx/_old 2011-09-12 10:36:58.000000000 +0200 +++ /var/tmp/diff_new_pack.38QBDx/_new 2011-09-12 10:36:58.000000000 +0200 @@ -2,10 +2,10 @@ <HTML> <HEAD> <META NAME="GENERATOR" CONTENT="LinuxDoc-Tools 0.9.66"> - <TITLE>Squid 3.1.14 release notes</TITLE> + <TITLE>Squid 3.1.15 release notes</TITLE> </HEAD> <BODY> -<H1>Squid 3.1.14 release notes</H1> +<H1>Squid 3.1.15 release notes</H1> <H2>Squid Developers</H2> <HR> @@ -71,7 +71,7 @@ <HR> <H2><A NAME="s1">1.</A> <A HREF="#toc1">Notice</A></H2> -<P>The Squid Team are pleased to announce the release of Squid-3.1.14</P> +<P>The Squid Team are pleased to announce the release of Squid-3.1.15</P> <P>This new release is available for download from <A HREF="http://www.squid-cache.org/Versions/v3/3.1/";>http://www.squid-cache.org/Versions/v3/3.1/</A> or the <A HREF="http://www.squid-cache.org/Mirrors/http-mirrors.html";>mirrors</A>.</P> @@ -90,7 +90,7 @@ <P> <UL> <LI>The lack of some features available in Squid-2.x series. See the regression sections below for full details.</LI> -<LI>CVE-2009-0801 : NAT interception vulnerability to malicious clients.</LI> +<LI>CVE-2009-0801 : NAT interception vulnerability to malicious clients. This is fixed in 3.2 series.</LI> </UL> </P> @@ -1176,6 +1176,7 @@ <DT><B>auth_param ntlm, basic, digest</B><DD> <P>BASIC, DIGEST: New parameter option <EM>utf8 on|off</EM> to permit helpers to selectively process UTF-8 characters even though HTTP accepts only ISO-8859-1.</P> +<P>NCSA authenticator updated in 3.1.15 to alert if passwords with more than 8 characters are used with DES encryption method.</P> <P>NTLM: The helper binary bundled with Squid under the name <EM>ntlm_auth</EM> has been renamed to accurately reflect its real behavior and to prevent confusion with the more useful Samba helper using the same name.</P> <P>Despite being used for NTLM, the helper does not in fact provide true NTLM function. What it does provide is @@ -1320,6 +1321,9 @@ <DT><B>header_replace</B><DD> <P>Deprecated. Use request_header_replace or reply_header_replace instead.</P> +<DT><B>hierarchy_stoplist</B><DD> +<P>Default value altered to no content, allowing dynamic websites to be fetched through peers.</P> + <DT><B>http_port transparent intercept ssl-bump connection-auth[=on|off] ignore-cc</B><DD> <P>Option 'transparent' is being deprecated in favour of 'intercept' which more clearly identifies what the option does. For now option 'tproxy' remains with old behaviour meaning fully-invisible proxy using TPROXY support.</P> ++++++ squid-3.1.14.tar.bz2 -> squid-3.1.15.tar.bz2 ++++++ ++++ 4526 lines of diff (skipped) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
