1
0
mirror of https://git.FreeBSD.org/ports.git synced 2024-12-02 01:20:54 +00:00
freebsd-ports/www/squid31
Edwin Groothuis 55e802ecd8 [Maintainer/security] www/squid: protect against HTTP resonse split
attack and other patches

    Integrate vendor patches as published on
    <http://www.squid-cache.org/Versions/v2/2.5/bugs/>:

    - FTP data connection fails on some FTP servers when requesting
      a directory without a trailing slash (squid bug #1194)

    - Icons fail to load on non-anonymous FTP when using the
      short_icons_url configuration directive (squid bug #1203)

    - Strengthen squid against HTTP response splitting cache pollution
      attacks (squid bug #1200), classified as security issue by
      the vendor

    Proposed VuXML information, entry date left to be filled in:

    (Note: I added only a publically accessible link to the Sanctum,
    Inc.  whitepaper, the squid bug tracker contains a deep link
    to the PDF itself; if we are allowed to publish it, it could
    instead be used as reference because Sanctum, Inc. wants you
    to register with them before you get access to their whitepapers.)

PR:		ports/76550
Submitted by:	Thomas-Martin Seck <tmseck@netcologne.de>
2005-01-22 09:31:33 +00:00
..
files - Integrate a vendor patch that prevents squid from consuming 100% 2004-10-18 21:50:20 +00:00
distinfo [Maintainer/security] www/squid: protect against HTTP resonse split 2005-01-22 09:31:33 +00:00
Makefile [Maintainer/security] www/squid: protect against HTTP resonse split 2005-01-22 09:31:33 +00:00
pkg-deinstall - Fix plist 2004-04-28 19:49:18 +00:00
pkg-descr Implement vendor patches for the following issues: 2004-09-02 06:44:14 +00:00
pkg-install - Update to 2.5-STABLE7; this release fixes a security issue regarding 2004-10-13 09:43:48 +00:00