Releases: tinyproxy/tinyproxy
Release 1.11.2
Fixes issues detected in 1.11.1, including a nasty UAF bug.
see git changelog for detailed list: 1.11.1...1.11.2
more work was planned to go into this release, though the found security bug makes it important to have a new version available asap.
$ sha512sum *
29f174e039362d3fd9e3d5504b051bb37e8db2c8ecad3e751a79bad4128da600afec015e0a8b04e478e894ca04e091cc6d3e1cc7dd1ac8041d2db73edb2e512e tinyproxy-1.11.2.tar.bz2
d7cdc3aa273881ca1bd3027ff83d1fa3d3f40424a3f665ea906a3de059df2795455b65aeebde0f75ae5cacf9bba57219bc0c468808a9a75278e93f8d7913bac5 tinyproxy-1.11.2.tar.gz
008e43b770f946965d5a3fbad1881859e30b66a3a4a97cf9982e63d81139da7a8f23937601b72f32276166cd170008cafec9231b616fc840f05cae3c1329be35 tinyproxy-1.11.2.tar.xz
Release 1.11.1
Fixes issues detected in 1.11.0, add new fnmatch based filtertype.
see git changelog for detailed list: 1.11.0...1.11.1
$ sha512sum *
122c8aa7eb3862e77aba62e1b5188a59fff504acdbac3399ea2d9a3b1743153780095bcf713c242edc0a171a27facdc6cbaaad0429e491dd1d9f390d8148f501 tinyproxy-1.11.1.tar.bz2
6ac7b57c33dcc87d6945c2b14f262e98d8c349c2492b3dd71f8028c4937df2a8e6ed7c913e8f6598b3e8ae83d5b51b9d5144c77f14f229df4aac5e094bcae6a6 tinyproxy-1.11.1.tar.gz
2e3435bbfece3797c11ccce222eef494ed92e00dd82bea2c40a54e454b7e03c8abc8e09b244f2da7192209c39047369439d08974b79eebc996fb3095230d0374 tinyproxy-1.11.1.tar.xz
Release 1.11.0
Fixes issues detected in 1.11.0-rc1 prerelease.
see git changelog for detailed list: 1.11.0-rc1...1.11.0
sha256sums:
db322f588b744f7758f42dbb1a497cb94f347c5bd7205e78bf8a2df0815aabe9 tinyproxy-1.11.0.tar.bz2
20f74769e40144e4d251d2977cc4c40d2d428a2bec8c1b8709cd07315454baef tinyproxy-1.11.0.tar.gz
c1ec81cfc4c551d2c24e0227a5aeeaad8723bd9a39b61cd729e516b82eaa3f32 tinyproxy-1.11.0.tar.xz
Release 1.11.0-rc1
lots of improvements and bugfixes.
see git log for details:
1.10.0...1.11.0-rc1
sha256sum:
f5f51252edaf0d9c53eb86768dee25cad9aa5772fc69372b8756f9cb067a4763 tinyproxy-1.11.0-rc1.tar.gz
dcb1dd80dd65b3d9c619796a3556239a3a1474bed7f8f57d29b967b965704aa4 tinyproxy-1.11.0-rc1.tar.xz
Version 1.10.0
Tinyproxy version 1.10.0
This is the new stable version of tinyproxy.
Major changes in this release
- Add support for basic HTTP authentication
- Add socks upstream support
- Log to stdout if no logfile is specified
- Activate reverse proxy by default
- Support bind with transparent mode
- Install tinyproxy to bin/ instead of sbin/
- Ship manpages as part of distribution tarball
- Allow multiple listen statements in the configuration
- Coverity fixes
- Simplified configure and build
- Improved selftest environment
Included security fixes
- Fix CVE-2017-11747: Create PID file before dropping privileges.
- Fix CVE-2012-3505: algorithmic complexity DoS in hashmap
Bugfixes
- BB#110: fix algorithmic complexity DoS in hashmap
- BB#106: fix CONNECT requests with IPv6 literal addresses as host
- BB#116: fix invalid free for GET requests to ipv6 literal address
- BB#63: conf: Allow multiple Listen statements in the config
- BB#81: allow listening on multiple families when no Listen is provided in config
- BB#115: Drop supplementary groups
- BB#112: build: fix build with autoconf >= 2.69
- BB#103: Move files installed in /etc/ to /etc/tinyproxy/
- BB#109: Fix crash (infinite loop) when writing to log file fails
- BB#90: Fix bug in ACL netmask generation
- BB#95: Fix FilterURLs with transparent proxy support
- BB#91: Fix upstream proxy support
- BB#74: Create log and pid files after we drop privs
- BB#89: Don't recompile regular expressions
- BB#83: Use output of id instead of $USER
- BB#80: keep track of error codes in return codes in tests
Note: bugzilla.banu.com does not exist any more, so there is no reference for these any more except for the code changes in git log.
v1.8.4
Tinyproxy version 1.8.4
Most notably, this release removes the limitation of a single Listen address of not listening on the wildcard address (BB#63) and a DoS (BB#110, CVE-2012-3505).
Among several other bug fixes, this release fixes a bunch of issues found by coverity (scan.coverity.com).
Bugs resolved since version 1.8.3
- BB#110: fix algorithmic complexity DoS in hashmap
- BB#106: fix failing CONNECT requests with IPv6 literal addresses
- BB#116: fix invalid free for GET requests to IPv6 literal addresses
- BB#63: support multiple Listen statements in configuration
- BB#81: support listening on ipv4 and ipv6 wildcard if no Listen specified
- BB#109: fix crash when writing to log file fails
- BB#112: fix build with autoconf >= 2.69
Contributors:
Mukund Sivaraman, Michael Adam, Gaudenz Steinlin, Peter H. Froehlich