Navigation:
Home |
Browse by maintainer |
Search |
RSS |
News |
Info |
Contact |
Statistics |
Ports tracker |
Help
www squid
CVSweb ] [ 
Homepage ] [ 
RSS feed ]| Version: 2.7.STABLE7p0, Package name: squid-2.7.STABLE7p0 |
| Maintained by: Brad Smith |
| Required to build: [devel/metaauto] [devel/autoconf/2.62] |
| Master sites: |
Flavors (export FLAVOR=xyz, setenv FLAVOR xyz):
|
| Description Squid is a high-performance proxy caching server for web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DNS lookups, supports non-blocking DNS lookups, and implements negative caching of failed requests. Squid supports SSL, extensive access controls, and full request logging. By using the lightweight Internet Cache Protocol, Squid caches can be arranged in a hierarchy or mesh for additional bandwidth savings. Flavors: ldap - Support for LDAP snmp - Support for SNMP |
| MD5: xQYgf5IabaGHi0CF4gLhkA= |
| RMD160: wq2hqrOIJEqqIEdqWITpSzEH+/w= |
| Filesize: 1742.505 KB |
Package available on: cdrom(  ), ftp()Distfile available on: cdrom( ), ftp() |
| Version History (View Complete History) |
|
| 2010-02-08 20:07:43 by William Yodlowsky | Files touched by this commit (4) |
Log message: MFC: SECURITY FIX Resolves: CVE-2009-2855, CVE-2010-0308, and bugfixes ok Brad jasper@ |
| 2010-02-02 23:41:17 by Jasper Lievisse Adriaanse | Files touched by this commit (2) |
Log message: SECURITY FIX for CVE-2010-0308, "Squid DNS Packet Processing Denial of Service Vulnerability" brad (MAINTAINER) came up with the same diff ok ajacoutot@ sthen@ |
| 2009-10-29 18:56:57 by Stuart Henderson | Files touched by this commit (9) |
Log message: update to the latest bug fix release in the 2.7 branch. From Brad (maintainer). |
| 2009-10-24 21:37:12 by William Yodlowsky | Files touched by this commit (2) |
Log message: MFC: SECURITY FIX Resolve CVE-2009-2855 |
| 2009-09-14 20:38:09 by William Yodlowsky | Files touched by this commit (2) |
Log message: MFC: SECURITY FIX Resolve CVE-2009-2855 ok jasper@ |
| 2009-08-30 15:52:44 by Jasper Lievisse Adriaanse | Files touched by this commit (2) |
Log message: Security fix for CVE-2009-2855 ok brad (MAINTAINER) |
| 2009-02-08 08:04:33 by Stuart Henderson | Files touched by this commit (5) |
Log message: bug fix update to Squid 2.7-STABLE6, from Brad. |
| 2009-01-07 20:37:24 by Stuart Henderson | Files touched by this commit (3) |
Log message: update to 2.7.STABLE5, various bugfixes. From Brad (and running here ~3wks). |
| 2008-08-20 10:35:15 by Brad Smith | Files touched by this commit (5) |
Log message: Upgrade Squid to 2.7-STABLE4 ok ajacoutot@ |
| 2008-07-16 15:18:28 by Brad Smith | Files touched by this commit (13) |
Log message: Upgrade Squid to 2.7-STABLE3. ok okan@ |
| 2008-05-31 04:07:45 by Jasper Lievisse Adriaanse | Files touched by this commit (8) |
Log message: - update squid to 2.6STABLE20 - update license marker - remove transparent flavor - add ldap flavor from brad@ (MAINTAINER), testing by several users |
| 2008-02-20 02:18:01 by Landry Breuil | Files touched by this commit (2) |
Log message: Add missing @sample markers in PLIST, bump PKGNAME. from brad@ |
| 2008-01-28 15:04:00 by Rui Reis | Files touched by this commit (2) |
Log message: - update squid to 2.6.STABLE18 from brad@ |
| 2007-12-03 18:27:13 by Todd T. Fries | Files touched by this commit (3) |
Log message: update to 2.6.STABLE17 from maint; works and builds ok for me |
| 2007-10-08 01:04:50 by Alexandre Anriot | Files touched by this commit (1) |
Log message: enable the "X-Forwarded-For" headers support which has been added in Squid 2.6. It's not the default in squid.conf but can be enabled, and it's useful e.g. when you are using squid through dansguardian, in order to keep/show the source address of the client in the logs (otherwise, squid thinks that everything comes from dansguardian). ok brad@ |
| 2007-09-10 11:49:23 by Michael Erdely | Files touched by this commit (10) |
Log message: Update to Squid 2.6.STABLE16. From brad (MAINTAINER) ok sthen@ |
| 2007-09-01 14:11:21 by Matthias Kilian | Files touched by this commit (12) |
Log message: Change Brads email address for now, so people can reach him instead of getting bounces or 550s. Bump pkgnames. While here, remove quotes from comments. prompted by espie@ |
| 2007-05-19 18:52:32 by Todd T. Fries | Files touched by this commit (7) |
Log message: update to 2.6 stable13, from brad@ (maint) ok kili@ tested by me |
| 2007-04-12 09:10:02 by Robert Nagy | Files touched by this commit (4) |
Log message: update to version 2.6.STABLE12 (regen patches while here); from MAINTAINER; Brad <brad@comstyle.com> |
| 2007-04-05 11:26:27 by Marc Espie | Files touched by this commit (815) |
Log message: more base64 checksums |
| 2007-02-01 00:46:24 by Todd T. Fries | Files touched by this commit (5) |
Log message: bugfix maintenance release update for Squid. from maint brad@ |
| 2007-01-13 09:13:29 by Todd T. Fries | Files touched by this commit (4) |
Log message: bugfix update; from maintainer (brad@) |
| 2006-11-12 19:11:39 by Brad Smith | Files touched by this commit (8) |
Log message: upgrade to 2.6.STABLE5 |
| 2006-10-03 12:32:44 by Brad Smith | Files touched by this commit (2) |
Log message: fix the MESSAGE file, s/2.5/2.6/ |
| 2006-10-02 23:00:49 by Brad Smith | Files touched by this commit (12) |
Log message: upgrade to 2.6.STABLE4 Squid 2.6 supports kqueue and hw accelerated SSL via OpenSSL, as well as many other improvements. |
| 2006-06-19 05:49:26 by Bernd Ahlers | Files touched by this commit (4) |
Log message: Back out change with no review. ok espie@, pvalchev@ |
| 2006-06-16 21:15:55 by Brad Smith | Files touched by this commit (4) |
Log message: upgrade to 2.5.STABLE14 |
| 2006-04-13 17:46:56 by Brad Smith | Files touched by this commit (4) |
Log message: upgrade to 2.5.STABLE13 |
| 2006-01-05 18:40:27 by Brad Smith | Files touched by this commit (2) |
Log message: Have Squid open /dev/pf in read-only mode. From: Andrey Matveev <evol at online dot ptt dot ru> |
| 2005-11-03 11:28:57 by Christian Weisgerber | Files touched by this commit (40) |
Log message: Always explicitly set the AUTOCONF_VERSION to use. In some cases the default was not appropriate. |
| 2005-11-02 02:41:14 by Nikolay Sturm | Files touched by this commit (2) |
Log message: MFC: upgrade to 2.5.STABLE12 - [Major] Error introduced in 2.5.STABLE11 causing truncated responses when using delay pools (Bug #1405) ok brad |
| 2005-11-02 02:40:35 by Nikolay Sturm | Files touched by this commit (2) |
Log message: MFC: upgrade to 2.5.STABLE12 - [Major] Error introduced in 2.5.STABLE11 causing truncated responses when using delay pools (Bug #1405) ok brad |
| 2005-11-01 04:23:09 by Nikolay Sturm | Files touched by this commit (2) |
Log message: MFC: upgrade to 2.5.STABLE11 Alex Masterov has reported a vulnerability in Squid, which potentially can be exploited by malicious people to cause a DoS. The vulnerability is caused due to an unspecified error in the "sslConnectTimeout()" function after handling malformed requests. This may be exploited to crash Squid. CAN-2005-2796 ok brad@ |
| 2005-10-29 17:26:39 by Brad Smith | Files touched by this commit (7) |
Log message: upgrade to 2.5.STABLE12 - [Major] Error introduced in 2.5.STABLE11 causing truncated responses when using delay pools (Bug #1405) |
| 2005-09-26 14:39:06 by Nikolay Sturm | Files touched by this commit (1) |
Log message: ups |
| 2005-09-26 14:35:10 by Nikolay Sturm | Files touched by this commit (2) |
Log message: MFC: upgrade to 2.5.STABLE11 Alex Masterov has reported a vulnerability in Squid, which potentially can be exploited by malicious people to cause a DoS. The vulnerability is caused due to an unspecified error in the "sslConnectTimeout()" function after handling malformed requests. This may be exploited to crash Squid. CAN-2005-2796 ok brad@ |
| 2005-09-26 14:34:09 by Nikolay Sturm | Files touched by this commit (2) |
Log message: MFC: upgrade to 2.5.STABLE11 Alex Masterov has reported a vulnerability in Squid, which potentially can be exploited by malicious people to cause a DoS. The vulnerability is caused due to an unspecified error in the "sslConnectTimeout()" function after handling malformed requests. This may be exploited to crash Squid. CAN-2005-2796 ok brad@ |
| 2005-09-25 11:03:33 by Brad Smith | Files touched by this commit (5) |
Log message: upgrade to 2.5.STABLE11 Alex Masterov has reported a vulnerability in Squid, which potentially can be exploited by malicious people to cause a DoS. The vulnerability is caused due to an unspecified error in the "sslConnectTimeout()" function after handling malformed requests. This may be exploited to crash Squid. CAN-2005-2796 |
| 2005-05-25 21:53:29 by Robert Nagy | Files touched by this commit (3) |
Log message: SECURITY: update to 2.5.STABLE10 fix multiple vulnerabilities http://www.vuxml.org/openbsd/cf9986f2-cd8d-11d9-a230-00065bd5b0b6.html ok brad@ |
| 2005-05-25 21:47:27 by Robert Nagy | Files touched by this commit (3) |
Log message: SECURITY: update to 2.5.STABLE10 fix multiple vulnerabilities http://www.vuxml.org/openbsd/cf9986f2-cd8d-11d9-a230-00065bd5b0b6.html ok brad@ |
| 2005-05-24 20:27:13 by Brad Smith | Files touched by this commit (8) |
Log message: upgrade to 2.5.STABLE10 - Malicious users may spoof DNS lookups if the DNS client UDP port (random, assigned by OS at startup) is unfiltered and your network is not protected from IP spoofing. - CVE-1999-0710, adds access controls to the cachemgr.cgi script, preventing it from being abused to reach other servers than allowed in a local configuration file. |
| 2005-03-27 08:08:02 by Nikolay Sturm | Files touched by this commit (2) |
Log message: better check for missing error files ok brad@ |
| 2005-03-27 08:07:30 by Nikolay Sturm | Files touched by this commit (2) |
Log message: better check for missing error files ok brad@ |
| 2005-03-11 10:39:31 by Nikolay Sturm | Files touched by this commit (1) |
Log message: update to squid 2.5.STABLE9 ok brad@ |
| 2005-03-11 10:39:04 by Nikolay Sturm | Files touched by this commit (1) |
Log message: update to squid 2.5.STABLE9 ok brad@ |
| 2005-02-25 09:37:25 by Brad Smith | Files touched by this commit (2) |
Log message: upgrade to Squid 2.5.STABLE9 |
| 2005-02-19 02:13:16 by Nikolay Sturm | Files touched by this commit (2) |
Log message: MFC: upgrade to Squid 2.5.STABLE8 + patches Fixes 2 major issues over STABLE7 + the previous round of patches.. - Data corruption when HTTP reply headers is split in several packets - Assertion failure on certain odd DNS responses ok brad@ |
| 2005-02-19 02:12:41 by Nikolay Sturm | Files touched by this commit (2) |
Log message: MFC: upgrade to Squid 2.5.STABLE8 + patches Fixes 2 major issues over STABLE7 + the previous round of patches.. - Data corruption when HTTP reply headers is split in several packets - Assertion failure on certain odd DNS responses ok brad@ |
| 2005-02-16 20:32:24 by Brad Smith | Files touched by this commit (3) |
Log message: upgrade to Squid 2.5.STABLE8 + patches Fixes 2 major issues over STABLE7 + the previous round of patches.. - Data corruption when HTTP reply headers is split in several packets - Assertion failure on certain odd DNS responses |
| 2005-02-12 02:16:42 by Nikolay Sturm | Files touched by this commit (2) |
Log message: MFC: add missing ERR_INVALID_RESP to PLIST ok brad@ |
| 2005-02-12 02:16:03 by Nikolay Sturm | Files touched by this commit (2) |
Log message: MFC: add missing ERR_INVALID_RESP to PLIST ok brad@ |
| 2005-02-10 19:47:56 by Brad Smith | Files touched by this commit (2) |
Log message: add missing ERR_INVALID_RESP to PLIST |
| 2005-02-05 14:50:14 by Nikolay Sturm | Files touched by this commit (1) |
Log message: MFC: SECURITY: add most of the latest distribution patches which include 4 security fixes. -Correct handling of oversized reply headers -Buffer overflow in WCCP recvfrom() call -Strengthen Squid from HTTP response splitting cache pollution attack -Reject malformed HTTP requests and responses that conflict with the HTTP specifications ok brad@ |
| 2005-02-05 14:49:26 by Nikolay Sturm | Files touched by this commit (1) |
Log message: MFC: SECURITY: add most of the latest distribution patches which include 4 security fixes. -Correct handling of oversized reply headers -Buffer overflow in WCCP recvfrom() call -Strengthen Squid from HTTP response splitting cache pollution attack -Reject malformed HTTP requests and responses that conflict with the HTTP specifications ok brad@ |
| 2005-02-05 14:36:30 by Brad Smith | Files touched by this commit (1) |
Log message: fix for ldap_search |
| 2005-02-03 21:27:38 by Brad Smith | Files touched by this commit (2) |
Log message: SECURITY: add most of the latest distribution patches which include 4 security fixes. -Correct handling of oversized reply headers -Buffer overflow in WCCP recvfrom() call -Strengthen Squid from HTTP response splitting cache pollution attack -Reject malformed HTTP requests and responses that conflict with the HTTP specifications |
| 2005-01-30 01:44:29 by Nikolay Sturm | Files touched by this commit (2) |
Log message: MFC: upgrade to Squid 2.5.STABLE7 A parsing error exists in the SNMP module of Squid where a specially-crafted UDP packet can potentially cause the server to restart, closing all current connections. MFC: upgrade to Squid 2.5.STABLE7 A parsing error exists in the SNMP module of Squid where a specially-crafted UDP packet can potentially cause the server to restart, closing all current connections. --- Fix 2 security issues... A bug exists in the code that parses responses from Gopher servers. The bug results in a buffer overflow if a Gopher server returns a line longer than 4096 bytes. The overflow results in memory corruption and usually crashes Squid. CAN-2005-0094 A bug exists in the code that parses WCCP messages. An attacker that sends a malformed WCCP messages, with a spoofed source address matching Squid's "home router" can crash Squid. CAN-2005-0095 ok brad@ |
| 2005-01-30 01:43:21 by Nikolay Sturm | Files touched by this commit (3) |
Log message: MFC: upgrade to Squid 2.5.STABLE7 A parsing error exists in the SNMP module of Squid where a specially-crafted UDP packet can potentially cause the server to restart, closing all current connections. --- Fix 2 security issues... A bug exists in the code that parses responses from Gopher servers. The bug results in a buffer overflow if a Gopher server returns a line longer than 4096 bytes. The overflow results in memory corruption and usually crashes Squid. CAN-2005-0094 A bug exists in the code that parses WCCP messages. An attacker that sends a malformed WCCP messages, with a spoofed source address matching Squid's "home router" can crash Squid. CAN-2005-0095 ok brad@ |
| 2005-01-25 22:08:11 by Brad Smith | Files touched by this commit (2) |
Log message: Fix 2 security issues... A bug exists in the code that parses responses from Gopher servers. The bug results in a buffer overflow if a Gopher server returns a line longer than 4096 bytes. The overflow results in memory corruption and usually crashes Squid. CAN-2005-0094 A bug exists in the code that parses WCCP messages. An attacker that sends a malformed WCCP messages, with a spoofed source address matching Squid's "home router" can crash Squid. CAN-2005-0095 |
| 2005-01-05 10:39:05 by Christian Weisgerber | Files touched by this commit (147) |
Log message: SIZE |
| 2004-12-07 12:33:33 by Aleksander Piotrowski | Files touched by this commit (4) |
Log message: - Kill DEINSTALL - Replace INSTALL with @samples, @execs, etc. - Add WANTLIB marker - Bump PKGNAME |
| 2004-10-31 01:20:30 by Brad Smith | Files touched by this commit (3) |
Log message: use @newgroup / @newuser |
| 2004-10-31 00:54:37 by Brad Smith | Files touched by this commit (1) |
Log message: better |
| 2004-10-20 15:44:21 by Brad Smith | Files touched by this commit (5) |
Log message: upgrade to Squid 2.5.STABLE7 A parsing error exists in the SNMP module of Squid where a specially-crafted UDP packet can potentially cause the server to restart, closing all current connections. |
| 2004-09-15 12:49:53 by Marc Espie | Files touched by this commit (121) |
Log message: new plists. comment out netscape-dynmotif, since we don't have the required motif lib. |
| 2004-08-04 10:12:14 by Christian Weisgerber | Files touched by this commit (8) |
Log message: fix up MODGNU_CONFIG_GUESS_DIRS |
| 2004-07-11 11:05:03 by Brad Smith | Files touched by this commit (1) |
Log message: sync |
| 2004-07-11 11:00:47 by Brad Smith | Files touched by this commit (8) |
Log message: upgrade to Squid 2.5.STABLE6 |
| 2004-06-23 21:16:55 by Brad Smith | Files touched by this commit (6) |
Log message: remove messages about user/group change. |
| 2004-06-11 02:00:36 by Brad Smith | Files touched by this commit (6) |
Log message: - add 2 more distribution patches - add snmp FLAVOR from Joel CARNAT <joel at carnat dot net> - add some auth types and auth/acl helpers - add NTLM auth SMB patch even though the default port does NOT compile this support in |
| 2004-06-06 22:15:22 by Brad Smith | Files touched by this commit (1) |
Log message: one of the distrib patches was updated |
| 2004-06-02 15:40:00 by Brad Smith | Files touched by this commit (3) |
Log message: more distribution patches |
| 2004-05-05 18:54:15 by Brad Smith | Files touched by this commit (4) |
Log message: MFC: upgrade to Squid 2.5.STABLE5 + latest patches A bug in Squid that allows users to bypass certain access controls. Squid versions 2.5.STABLE4 and earlier contain a bug in the "%xx" URL decoding function. It may insert a NULL character into decoded URLs, which may allow users to bypass url_regex ACLs. http://www.squid-cache.org/Advisories/SQUID-2004_1.txt and Add 2 more distribution patches. One of them fixes an issue if using Digest authentication. Users can crash Squid with a segmentation fault simply by entering a blank user name. |
| 2004-04-21 05:14:43 by Brad Smith | Files touched by this commit (1) |
Log message: MFC: Add 2 more distribution patches. One of them fixes an issue if using Digest authentication. Users can crash Squid with a segmentation fault simply by entering a blank user name. |
| 2004-04-21 05:11:19 by Brad Smith | Files touched by this commit (2) |
Log message: Add 2 more distribution patches. One of them fixes an issue if using Digest authentication. Users can crash Squid with a segmentation fault simply by entering a blank user name. |
| 2004-04-15 19:04:00 by Brad Smith | Files touched by this commit (3) |
Log message: MFC: upgrade to Squid 2.5.STABLE5 + latest patches A bug in Squid that allows users to bypass certain access controls. Squid versions 2.5.STABLE4 and earlier contain a bug in the "%xx" URL decoding function. It may insert a NULL character into decoded URLs, which may allow users to bypass url_regex ACLs. http://www.squid-cache.org/Advisories/SQUID-2004_1.txt |
| 2004-04-15 18:39:03 by Brad Smith | Files touched by this commit (1) |
Log message: sync |
| 2004-04-15 02:58:33 by Xavier Santolaria | Files touched by this commit (5) |
Log message: catch @extra escapers ... |
| 2004-04-15 01:34:11 by Xavier Santolaria | Files touched by this commit (6) |
Log message: @extraaaaaaaaaaaaaaaaa ... ok dhartmei@ jolan@ brad@ for their respective port; |
| 2004-04-12 18:40:47 by Brad Smith | Files touched by this commit (5) |
Log message: - add some distribution patches. From: Robert Nagy <thuglife at bsd dot hu> - only apply optimization workaround for gcc if using 2.95 |
| 2004-04-05 23:35:59 by Miod Vallat | Files touched by this commit (1) |
Log message: Tell squid that m88k does not imply SysV; maintainer ok |
| 2004-03-02 18:20:42 by Brad Smith | Files touched by this commit (4) |
Log message: upgrade to Squid 2.5.STABLE5 |
| 2004-02-24 19:35:18 by Christian Weisgerber | Files touched by this commit (52) |
Log message: The sparc64 compiler is gcc3 now; don't require the gcc3 module. |
| 2004-02-16 03:21:20 by Brad Smith | Files touched by this commit (3) |
Log message: add 29 of the latest distribution patches. |
| 2003-12-15 14:55:58 by Christian Weisgerber | Files touched by this commit (479) |
Log message: remove WWW lines |
| 2003-10-17 12:03:55 by Brad Smith | Files touched by this commit (4) |
Log message: upgrade to Squid 2.5.STABLE4 |
| 2003-08-22 15:12:18 by Brad Smith | Files touched by this commit (2) |
Log message: apply another distribution patch, the squid-2.5.STABLE3-mem_cfd.patch patch broke the forwarded_for directive. |
| 2003-08-18 11:13:40 by Brad Smith | Files touched by this commit (2) |
Log message: add some more distribution patches. -- Thanks to mpech@ for some testing |
| 2003-07-26 00:05:52 by Brad Smith | Files touched by this commit (1) |
Log message: optimization issues with gcc 2.95, use gcc 3 on sparc64. -- From: Matthieu Herrb <matthieu dot herrb at laas dot fr> |
| 2003-07-22 19:47:21 by Brad Smith | Files touched by this commit (2) |
Log message: apply a number of distribution patches. |
| 2003-07-08 14:43:21 by Brad Smith | Files touched by this commit (5) |
Log message: switch to new schema for user/group. -- From: sturm@ Thanks to mpech@ for testing and pointing out the user/group I almost missed in MESSAGE. |
| 2003-07-07 11:44:44 by Brad Smith | Files touched by this commit (4) |
Log message: upgrade to Squid 2.5.STABLE3 throw in the SSL gatewaying support, this is not enabled by default. |
| 2003-05-13 14:12:03 by Brad Smith | Files touched by this commit (8) |
Log message: upgrade to Squid 2.5.STABLE2 |
| 2002-10-04 07:52:48 by Brad Smith | Files touched by this commit (2) |
Log message: upgrade to Squid 2.5.STABLE1 |
| 2002-09-19 19:27:11 by Brad Smith | Files touched by this commit (4) |
Log message: upgrade to Squid 2.5.PRE13 |