diff options
| author | taca <taca@pkgsrc.org> | 2014-10-02 07:33:47 +0000 |
|---|---|---|
| committer | taca <taca@pkgsrc.org> | 2014-10-02 07:33:47 +0000 |
| commit | 9b5654643b88be45bad2a3b779c28d61e888b448 (patch) | |
| tree | b57cdb444566d2d20a7fa116dcebb16b3523eb9c /www/squid3 | |
| parent | b5123abe0a9a1f98e1ba83d673af4136fbe75697 (diff) | |
| download | pkgsrc-9b5654643b88be45bad2a3b779c28d61e888b448.tar.gz | |
Update squid to 3.4.8, a security release resolving several vulnerability
issues found in the prior Squid releases.
The major changes to be aware of:
* CVE-2014-6270 : SQUID-2014:3 Buffer overflow in SNMP processing
http://www.squid-cache.org/Advisories/SQUID-2014_3.txt
This vulnerability allows any client who is allowed to send SNMP
packets to the proxy to perform a denial of service attack on Squid.
The issue came to light as the result of active 0-day attacks. Since
publication several other attack sightings have been reported.
* CVE-2014-7141 and CVE-2014-7142 : SQUID-2014:4
http://www.squid-cache.org/Advisories/SQUID-2014_4.txt
These vulnerabilities allow a remote attack server to trigger DoS or
information leakage by sending various malformed ICMP and ICMPv6
packets to the Squid pinger helper.
The worst-case DoS scenario is a rarity, a more common impact will be
general service degradation for high-performance systems relying on
the pinger for realtime network measurement.
All users of Squid are urged to upgrade to this release as soon as
possible.
See the ChangeLog for the full list of changes in this and earlier
releases.
Please refer to the release notes at
http://www.squid-cache.org/Versions/v3/3.4/RELEASENOTES.html
when you are ready to make the switch to Squid-3.4
Upgrade tip:
"squid -k parse" is starting to display even more
useful hints about squid.conf changes.
Diffstat (limited to 'www/squid3')
| -rw-r--r-- | www/squid3/Makefile | 5 | ||||
| -rw-r--r-- | www/squid3/distinfo | 8 |
2 files changed, 6 insertions, 7 deletions
diff --git a/www/squid3/Makefile b/www/squid3/Makefile index 574087096cd..cc09a010426 100644 --- a/www/squid3/Makefile +++ b/www/squid3/Makefile @@ -1,7 +1,6 @@ -# $NetBSD: Makefile,v 1.36 2014/08/29 11:13:46 tron Exp $ +# $NetBSD: Makefile,v 1.37 2014/10/02 07:33:47 taca Exp $ -DISTNAME= squid-3.4.7 -PKGREVISION= 1 +DISTNAME= squid-3.4.8 CATEGORIES= www MASTER_SITES= http://www.squid-cache.org/Versions/v3/${PKGVERSION_NOREV:R}/ \ ftp://ftp.squid-cache.org/pub/squid/ \ diff --git a/www/squid3/distinfo b/www/squid3/distinfo index a70cafe4ee1..02e103ac05c 100644 --- a/www/squid3/distinfo +++ b/www/squid3/distinfo @@ -1,8 +1,8 @@ -$NetBSD: distinfo,v 1.23 2014/08/28 16:52:02 adam Exp $ +$NetBSD: distinfo,v 1.24 2014/10/02 07:33:47 taca Exp $ -SHA1 (squid-3.4.7.tar.xz) = 22fc5dd02e8965823391da59436d42e3657e1e57 -RMD160 (squid-3.4.7.tar.xz) = 6278cd240ef8c84d438094d2bcce6b09e6c62e0b -Size (squid-3.4.7.tar.xz) = 2158672 bytes +SHA1 (squid-3.4.8.tar.xz) = e2e20414252f315b2912ae32ac084ea07a48133f +RMD160 (squid-3.4.8.tar.xz) = 9258efc30f6d9f61ac622d300ecb611cbf1c7346 +Size (squid-3.4.8.tar.xz) = 2159904 bytes SHA1 (patch-errors_Makefile.in) = afbac822ac84d5e1734d55fc625e949ae0b85289 SHA1 (patch-helpers_basic_auth_MSNT_Makefile.in) = 74a0379d3ec0c2601dbb62b16df889bf4edcaedf SHA1 (patch-src_Makefile.in) = 130e223568a07c474b30a8fa3678c60f8b487c3e |