Prep for 3.5.7 and 3.4.14

diff --git a/ChangeLog b/ChangeLog
index 94b26f4f0b046804e8f2253eeef2f5712d89e58e..91326e5bf01b9ef6271758c2fd24998c141e4281 100644 (file)
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,19 @@
+Changes to squid-3.5.7 (01 Aug 2015):
+
+       - Bug 4251: incorrect instance name for memory segments in /dev/shm
+       - Bug 4227: invalid key in AuthUserHashPointer causing assertation failure
+       - Bug 3345: support %un (any available user name) format code for external ACLs.
+       - Support ssl-bump splicing to origin cache_peer
+       - Fix SSL errors relayed using invalid certificates
+       - Fix crash in TcpAccepter with profiler enabled
+       - Fix some cases of ssl_crtd SSL certificate DB corruption
+       - Fix performance regression in SBuf::chop operations
+       - Improve handling of client connections on shutdown
+       - Handle exceptions during squid.conf parse
+       - Make pod2man an optional dependency
+       - ... and polishing for several cache.log notification messages
+       - ... and all fixes from squid 3.4.14
+
 Changes to squid-3.5.6 (03 Jul 2015):
 
        - Bug 4274: ssl_crtd.8 not being installed
@@ -182,6 +198,10 @@ Changes to squid-3.5.0.1 (17 Oct 2014):
        - ... and many error page translation updates
        - ... and much code cleanup and polishing
 
+Changes to squid-3.4.14 (01 Aug 2015):
+
+       - Do not blindly forward cache peer CONNECT responses (CVE-2015-5400)
+
 Changes to squid-3.4.13 (01 May 2015):
 
        - Bug 4212: ssl_crtd crashes with corrupt database

diff --git a/doc/release-notes/release-3.4.sgml b/doc/release-notes/release-3.4.sgml
index b84cc8cdf21d59bb259857ba317d33658d21aa9d..067074e89318e601de25517f35e5312b7bdb0dc1 100644 (file)
--- a/doc/release-notes/release-3.4.sgml
+++ b/doc/release-notes/release-3.4.sgml
@@ -1,6 +1,6 @@
 <!doctype linuxdoc system>
 <article>
-<title>Squid 3.4.13 release notes</title>
+<title>Squid 3.4.14 release notes</title>
 <author>Squid Developers</author>
 
 <abstract>
@@ -13,7 +13,7 @@ for Applied Network Research and members of the Web Caching community.
 
 <sect>Notice
 <p>
-The Squid Team are pleased to announce the release of Squid-3.4.13.
+The Squid Team are pleased to announce the release of Squid-3.4.14.
 
 This new release is available for download from <url url="http://www.squid-cache.org/Versions/v3/3.4/"> or the
  <url url="http://www.squid-cache.org/Download/http-mirrors.html" name="mirrors">.

diff --git a/doc/release-notes/release-3.5.sgml b/doc/release-notes/release-3.5.sgml
index cb8af5847c9b1211baa12f38da75e12b9a45ec4f..e393b959285e2eb1deee8229c9760f33c4706e00 100644 (file)
--- a/doc/release-notes/release-3.5.sgml
+++ b/doc/release-notes/release-3.5.sgml
@@ -1,6 +1,6 @@
 <!doctype linuxdoc system>
 <article>
-<title>Squid 3.5.6 release notes</title>
+<title>Squid 3.5.7 release notes</title>
 <author>Squid Developers</author>
 
 <abstract>
@@ -13,7 +13,7 @@ for Applied Network Research and members of the Web Caching community.
 
 <sect>Notice
 <p>
-The Squid Team are pleased to announce the release of Squid-3.5.6.
+The Squid Team are pleased to announce the release of Squid-3.5.7.
 
 This new release is available for download from <url url="http://www.squid-cache.org/Versions/v3/3.5/"> or the
  <url url="http://www.squid-cache.org/Download/http-mirrors.html" name="mirrors">.
@@ -431,6 +431,7 @@ This section gives a thorough account of those changes in three categories:
        <p>New format code <em>%ssl::&gt;sni</em> to send SSL client SNI.
        <p>New format code <em>%ssl::&lt;cert_subject</em> to send SSL server certificate DN.
        <p>New format code <em>%ssl::&lt;cert_issuer</em> to send SSL server certificate issuer DN.
+       <p>New format code <em>%un</em> to send any available user name (requires 3.5.7 or later).
        <p>New response kv-pair <em>clt_conn_tag=</em> to associates a given tag with the client TCP connection.
 
        <tag>forward_max_tries</tag>