From e724957f3efcb46781ea97e6a818c83f3f11fcca Mon Sep 17 00:00:00 2001
From: Natanael Copa <ncopa@alpinelinux.org>
Date: Thu, 29 Oct 2020 08:20:50 +0100
Subject: [PATCH] main/squid: security upgrade to 4.13

CVE-2020-15810
CVE-2020-15811
CVE-2020-24606

fixes #11896
---
 main/squid/APKBUILD | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/main/squid/APKBUILD b/main/squid/APKBUILD
index c232ee8cb3b0..791808ff7bfd 100644
--- a/main/squid/APKBUILD
+++ b/main/squid/APKBUILD
@@ -1,7 +1,7 @@
 # Contributor: Carlo Landmeter <clandmeter@gmail.com>
 # Maintainer: Natanael Copa <ncopa@alpinelinux.org>
 pkgname=squid
-pkgver=4.11
+pkgver=4.13
 pkgrel=0
 pkgdesc="A full-featured Web proxy cache server."
 url="http://www.squid-cache.org"
@@ -28,6 +28,10 @@ pkggroups="squid"
 options="!check"  # does not work. Error message is about "applet not found", some issue with the installed busybox
 
 # secfixes:
+#   4.13-r0:
+#     - CVE-2020-15810
+#     - CVE-2020-15811
+#     - CVE-2020-24606
 #   4.10-r0:
 #     - CVE-2020-8449
 #     - CVE-2020-8450
@@ -107,7 +111,7 @@ squid_kerb_auth() {
 	install -d "$subpkgdir"/usr/lib/squid
 	mv "$pkgdir"/usr/lib/squid/squid_kerb_auth "$subpkgdir"/usr/lib/squid/
 }
-sha512sums="02d4bb4d5860124347670615e69b1b92be7ea4fc0131e54091a06cb2e67bd73583d8e6cbe472473f0c59764611a49561d02ab9fe2bf0305ce4652d4ec7714f26  squid-4.11.tar.xz
+sha512sums="06807f82ed01e12afe2dd843aa0a94f69c351765b1889c4c5c3da1cf2ecb06ac3a4be6a24a62f04397299c8fc0df5397f76f64df5422ff78b37a9382d5fdf7fc  squid-4.13.tar.xz
 8320820c02c824ed96065e0b66cabdd80b11c23e911880a42f5bd7e3f6e7a5c1c6def910a1843cca810c62a7dc8ccdb9ae82c0cf52bf08259c3b50058232132d  squid.initd
 7292661de344e8a87d855c83afce49511685d2680effab3afab110e45144c0117935f3bf73ab893c9e6d43f7fb5ba013635e24f6da6daf0eeb895ef2e9b5baa9  squid.confd
 89a703fa4f21b6c7c26e64a46fd52407e20f00c34146ade0bea0c4b63d050117c0f8e218f2256a1fbf6abb84f4ec9b0472c9a4092ff6e78f07c4f5a25d0892a5  squid.logrotate"
-- 
GitLab