Changelog - in short: - Security fixes (denial of service): - Prevent invalid reads in case of corrupt chunk-encoded content. CVE-2016-1982. Bug discovered with afl-fuzz and AddressSanitizer. - Remove empty Host headers in client requests. Previously they would result in invalid reads. CVE-2016-1983. Bug discovered with afl-fuzz and AddressSanitizer.
Also several bug fixes as well as general, action file, and documentation improvements.
For details see: http://www.privoxy.org/announce.txt
Signed-off-by: Matthias Fischer matthias.fischer@ipfire.org --- lfs/privoxy | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-)
diff --git a/lfs/privoxy b/lfs/privoxy index bc4848a..de650a2 100644 --- a/lfs/privoxy +++ b/lfs/privoxy @@ -1,7 +1,7 @@ ############################################################################### # # # IPFire.org - A linux based firewall # -# Copyright (C) 2007-2015 IPFire Team info@ipfire.org # +# Copyright (C) 2007-2016 IPFire Team info@ipfire.org # # # # This program is free software: you can redistribute it and/or modify # # it under the terms of the GNU General Public License as published by # @@ -24,14 +24,14 @@
include Config
-VER = 3.0.23 +VER = 3.0.24 THISAPP = privoxy-$(VER) DL_FILE = $(THISAPP)-stable-src.tar.gz DL_FROM = $(URL_IPFIRE) DIR_APP = $(DIR_SRC)/$(THISAPP) TARGET = $(DIR_INFO)/$(THISAPP) PROG = privoxy -PAK_VER = 2 +PAK_VER = 3
DEPS = ""
@@ -43,7 +43,7 @@ objects = $(DL_FILE)
$(DL_FILE) = $(DL_FROM)/$(DL_FILE)
-$(DL_FILE)_MD5 = bbe47d5ff1a54d9f9fc93a160532697f +$(DL_FILE)_MD5 = 44a47d1a5000db8cccd61ace0e25e7f7
install : $(TARGET)
@@ -53,7 +53,7 @@ download :$(patsubst %,$(DIR_DL)/%,$(objects))
md5 : $(subst %,%_MD5,$(objects))
-dist: +dist: $(PAK)
###############################################################################