[1/1] package/squid: security bump version to 6.9

Message ID	20240514215636.2866720-1-bernd@kuhls.net
State	Accepted
Headers	show Return-Path: <buildroot-bounces@buildroot.org> Received-SPF: Pass (mailfrom) identity=mailfrom; client-ip=85.13.140.57; helo=dd20012.kasserver.com; envelope-from=bernd@kuhls.net; receiver=<UNKNOWN> DMARC-Filter: OpenDMARC Filter v1.4.2 smtp2.osuosl.org A8D2B404DF From: Bernd Kuhls <bernd@kuhls.net> To: buildroot@buildroot.org Date: Tue, 14 May 2024 23:56:36 +0200 Message-Id: <20240514215636.2866720-1-bernd@kuhls.net> MIME-Version: 1.0 Subject: [Buildroot] [PATCH 1/1] package/squid: security bump version to 6.9 Precedence: list Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Errors-To: buildroot-bounces@buildroot.org Sender: "buildroot" <buildroot-bounces@buildroot.org>
Series	[1/1] package/squid: security bump version to 6.9 \| expand [1/1] package/squid: security bump version to 6.9

Message ID

20240514215636.2866720-1-bernd@kuhls.net

State

Accepted

Headers

Received-SPF: Pass (mailfrom) identity=mailfrom; client-ip=85.13.140.57;
 helo=dd20012.kasserver.com; envelope-from=bernd@kuhls.net;
 receiver=<UNKNOWN>
DMARC-Filter: OpenDMARC Filter v1.4.2 smtp2.osuosl.org A8D2B404DF
From: Bernd Kuhls <bernd@kuhls.net>
To: buildroot@buildroot.org
Date: Tue, 14 May 2024 23:56:36 +0200
Message-Id: <20240514215636.2866720-1-bernd@kuhls.net>
MIME-Version: 1.0
X-Mailman-Original-Authentication-Results: smtp2.osuosl.org;
 dmarc=pass (p=none dis=none)
 header.from=kuhls.net
X-Mailman-Original-Authentication-Results: smtp2.osuosl.org;
 dkim=pass (2048-bit key) header.d=kuhls.net header.i=@kuhls.net
 header.a=rsa-sha256 header.s=kas202312101026 header.b=s61+VPWs
Subject: [Buildroot] [PATCH 1/1] package/squid: security bump version to 6.9
X-BeenThere: buildroot@buildroot.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Discussion and development of buildroot <buildroot.buildroot.org>
List-Unsubscribe: <https://lists.buildroot.org/mailman/options/buildroot>,
 <mailto:buildroot-request@buildroot.org?subject=unsubscribe>
List-Archive: <http://lists.buildroot.org/pipermail/buildroot/>
List-Post: <mailto:buildroot@buildroot.org>
List-Help: <mailto:buildroot-request@buildroot.org?subject=help>
List-Subscribe: <https://lists.buildroot.org/mailman/listinfo/buildroot>,
 <mailto:buildroot-request@buildroot.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: buildroot-bounces@buildroot.org
Sender: "buildroot" <buildroot-bounces@buildroot.org>

Series

[1/1] package/squid: security bump version to 6.9 | expand

Commit Message

Bernd Kuhls May 14, 2024, 9:56 p.m. UTC

Fixes CVE-2024-25111:
https://github.com/squid-cache/squid/security/advisories/GHSA-72c2-c3wm-8qxc

Signed-off-by: Bernd Kuhls <bernd@kuhls.net>
---
 package/squid/squid.hash | 6 +++---
 package/squid/squid.mk   | 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)

Comments

Peter Korsgaard May 15, 2024, 6:08 a.m. UTC | #1

>>>>> "Bernd" == Bernd Kuhls <bernd@kuhls.net> writes:

 > Fixes CVE-2024-25111:
 > https://github.com/squid-cache/squid/security/advisories/GHSA-72c2-c3wm-8qxc

 > Signed-off-by: Bernd Kuhls <bernd@kuhls.net>
 > ---
 >  package/squid/squid.hash | 6 +++---
 >  package/squid/squid.mk   | 2 +-
 >  2 files changed, 4 insertions(+), 4 deletions(-)

 > diff --git a/package/squid/squid.hash b/package/squid/squid.hash
 > index 4a8ea5d550..ed78933306 100644
 > --- a/package/squid/squid.hash
 > +++ b/package/squid/squid.hash
 > @@ -1,6 +1,6 @@
 > -# From http://www.squid-cache.org/Versions/v6/squid-6.6.tar.xz.asc
 > -md5  5a41134ee1b7e75f62088acdec92d2ca  squid-6.6.tar.xz
 > -sha1  f05e06a9dd3bf7501d2844e43d9ae1bd00e9edcc  squid-6.6.tar.xz
 > +# From http://www.squid-cache.org/Versions/v6/squid-6.9.tar.xz.asc
 > +md5  4888e9dc75c0daa0ed526b34c055cb67  squid-6.9.tar.xz
 > +sha1  5e73b30116ce7111589cc2b1c9bfe3c17efa2e75  squid-6.9.tar.xz
 >  # Locally calculated
 >  sha256  55bd7f9f4898153161ea1228998acb551bf840832b9e5b90fc8ecd2942420318  squid-6.6.tar.xz

You forgot to update the sha256. Committed with that fixed, thanks.

Peter Korsgaard June 8, 2024, 1:02 p.m. UTC | #2

>>>>> "Bernd" == Bernd Kuhls <bernd@kuhls.net> writes:

 > Fixes CVE-2024-25111:
 > https://github.com/squid-cache/squid/security/advisories/GHSA-72c2-c3wm-8qxc

 > Signed-off-by: Bernd Kuhls <bernd@kuhls.net>

Committed to 2024.02.x, thanks.

diff --git a/package/squid/squid.hash b/package/squid/squid.hash
index 4a8ea5d550..ed78933306 100644
--- a/package/squid/squid.hash
+++ b/package/squid/squid.hash
@@ -1,6 +1,6 @@ 
-# From http://www.squid-cache.org/Versions/v6/squid-6.6.tar.xz.asc
-md5  5a41134ee1b7e75f62088acdec92d2ca  squid-6.6.tar.xz
-sha1  f05e06a9dd3bf7501d2844e43d9ae1bd00e9edcc  squid-6.6.tar.xz
+# From http://www.squid-cache.org/Versions/v6/squid-6.9.tar.xz.asc
+md5  4888e9dc75c0daa0ed526b34c055cb67  squid-6.9.tar.xz
+sha1  5e73b30116ce7111589cc2b1c9bfe3c17efa2e75  squid-6.9.tar.xz
 # Locally calculated
 sha256  55bd7f9f4898153161ea1228998acb551bf840832b9e5b90fc8ecd2942420318  squid-6.6.tar.xz
 sha256  8177f97513213526df2cf6184d8ff986c675afb514d4e68a404010521b880643  COPYING
diff --git a/package/squid/squid.mk b/package/squid/squid.mk
index e325c63cb0..60eca397ec 100644
--- a/package/squid/squid.mk
+++ b/package/squid/squid.mk
@@ -4,7 +4,7 @@ 
 #
 ################################################################################
 
-SQUID_VERSION = 6.6
+SQUID_VERSION = 6.9
 SQUID_SOURCE = squid-$(SQUID_VERSION).tar.xz
 SQUID_SITE = http://www.squid-cache.org/Versions/v6
 SQUID_LICENSE = GPL-2.0+

[1/1] package/squid: security bump version to 6.9

Commit Message

Comments

Patch