[3.0] 2faf850 Prepare 3.0.7-rc1.
Lasse Karstensen
lkarsten at varnish-software.com
Wed Mar 18 11:22:24 CET 2015
commit 2faf850ad83f3389197d4e9e701a559316150abb
Author: Lasse Karstensen <lkarsten at varnish-software.com>
Date: Wed Mar 18 11:22:01 2015 +0100
Prepare 3.0.7-rc1.
diff --git a/LICENSE b/LICENSE
index 67dc00a..dd1d14b 100644
--- a/LICENSE
+++ b/LICENSE
@@ -1,5 +1,5 @@
Copyright (c) 2006 Verdens Gang AS
-Copyright (c) 2006-2014 Varnish Software AS
+Copyright (c) 2006-2015 Varnish Software AS
All rights reserved.
Redistribution and use in source and binary forms, with or without
diff --git a/configure.ac b/configure.ac
index 3ad3f53..e2eb271 100644
--- a/configure.ac
+++ b/configure.ac
@@ -1,8 +1,8 @@
AC_PREREQ(2.59)
AC_COPYRIGHT([Copyright (c) 2006 Verdens Gang AS
-Copyright (c) 2006-2014 Varnish Software AS])
+Copyright (c) 2006-2015 Varnish Software AS])
AC_REVISION([$Id$])
-AC_INIT([Varnish], [3.0.6], [varnish-dev at varnish-cache.org])
+AC_INIT([Varnish], [3.0.7-rc1], [varnish-dev at varnish-cache.org])
AC_CONFIG_SRCDIR(include/varnishapi.h)
AM_CONFIG_HEADER(config.h)
diff --git a/doc/changes.rst b/doc/changes.rst
index e482183..fa57fb9 100644
--- a/doc/changes.rst
+++ b/doc/changes.rst
@@ -1,3 +1,28 @@
+============================================
+Changes from 3.0.6 to 3.0.7-rc1 (2015-03-18)
+============================================
+
+- Requests with multiple Content-Length headers will now fail.
+
+- Stop recognizing a single CR (\r) as a HTTP line separator.
+This opened up a possible cache poisioning attack in stacked installations
+where sslterminator/varnish/backend had different CR handling.
+
+- Improved error detection on master-child process communication, leading to
+faster recovery (child restart) if communication looses sync.
+
+- Only emit passed Content_Length header when response mode is RES_LEN. Bug 1627_.
+
+- More robust handling of hop-by-hop headers.
+
+- [packaging] Coherent Redhat pidfile in init script. Bug 1690_.
+
+- Avoid memory leak when adding bans.
+
+.. _1627: http://varnish-cache.org/trac/ticket/1627
+.. _1690: http://varnish-cache.org/trac/ticket/1690
+
+
===========================================
Changes from 3.0.6rc1 to 3.0.6 (2014-10-16)
===========================================
diff --git a/redhat/varnish.spec b/redhat/varnish.spec
index 72d12be..e56a16c 100644
--- a/redhat/varnish.spec
+++ b/redhat/varnish.spec
@@ -1,9 +1,10 @@
+%define v_rc rc1
%define _use_internal_dependency_generator 0
%define __find_provides %{_builddir}/varnish-%{version}%{?v_rc:-%{?v_rc}}/redhat/find-provides
Summary: High-performance HTTP accelerator
Name: varnish
-Version: 3.0.6
-Release: 1%{?dist}
+Version: 3.0.7
+Release: 1%{?v_rc}%{?dist}
License: BSD
Group: System Environment/Daemons
URL: https://www.varnish-cache.org/
More information about the varnish-commit
mailing list