[3.0] 2faf850 Prepare 3.0.7-rc1.

Lasse Karstensen lkarsten at varnish-software.com
Wed Mar 18 11:22:24 CET 2015 

commit 2faf850ad83f3389197d4e9e701a559316150abb
Author: Lasse Karstensen <lkarsten at varnish-software.com>
Date:   Wed Mar 18 11:22:01 2015 +0100

    Prepare 3.0.7-rc1.

diff --git a/LICENSE b/LICENSE
index 67dc00a..dd1d14b 100644
--- a/LICENSE
+++ b/LICENSE
@@ -1,5 +1,5 @@
 Copyright (c) 2006 Verdens Gang AS
-Copyright (c) 2006-2014 Varnish Software AS
+Copyright (c) 2006-2015 Varnish Software AS
 All rights reserved.
 
 Redistribution and use in source and binary forms, with or without
diff --git a/configure.ac b/configure.ac
index 3ad3f53..e2eb271 100644
--- a/configure.ac
+++ b/configure.ac
@@ -1,8 +1,8 @@
 AC_PREREQ(2.59)
 AC_COPYRIGHT([Copyright (c) 2006 Verdens Gang AS
-Copyright (c) 2006-2014 Varnish Software AS])
+Copyright (c) 2006-2015 Varnish Software AS])
 AC_REVISION([$Id$])
-AC_INIT([Varnish], [3.0.6], [varnish-dev at varnish-cache.org])
+AC_INIT([Varnish], [3.0.7-rc1], [varnish-dev at varnish-cache.org])
 AC_CONFIG_SRCDIR(include/varnishapi.h)
 AM_CONFIG_HEADER(config.h)
 
diff --git a/doc/changes.rst b/doc/changes.rst
index e482183..fa57fb9 100644
--- a/doc/changes.rst
+++ b/doc/changes.rst
@@ -1,3 +1,28 @@
+============================================
+Changes from 3.0.6 to 3.0.7-rc1 (2015-03-18)
+============================================
+
+- Requests with multiple Content-Length headers will now fail.
+
+- Stop recognizing a single CR (\r) as a HTTP line separator.
+This opened up a possible cache poisioning attack in stacked installations
+where sslterminator/varnish/backend had different CR handling.
+
+- Improved error detection on master-child process communication, leading to
+faster recovery (child restart) if communication looses sync.
+
+- Only emit passed Content_Length header when response mode is RES_LEN.  Bug 1627_.
+
+- More robust handling of hop-by-hop headers.
+
+- [packaging] Coherent Redhat pidfile in init script. Bug 1690_.
+
+- Avoid memory leak when adding bans.
+
+.. _1627: http://varnish-cache.org/trac/ticket/1627
+.. _1690: http://varnish-cache.org/trac/ticket/1690
+
+
 ===========================================
 Changes from 3.0.6rc1 to 3.0.6 (2014-10-16)
 ===========================================
diff --git a/redhat/varnish.spec b/redhat/varnish.spec
index 72d12be..e56a16c 100644
--- a/redhat/varnish.spec
+++ b/redhat/varnish.spec
@@ -1,9 +1,10 @@
+%define v_rc rc1
 %define    _use_internal_dependency_generator 0
 %define __find_provides %{_builddir}/varnish-%{version}%{?v_rc:-%{?v_rc}}/redhat/find-provides
 Summary: High-performance HTTP accelerator
 Name: varnish
-Version: 3.0.6
-Release: 1%{?dist}
+Version: 3.0.7
+Release: 1%{?v_rc}%{?dist}
 License: BSD
 Group: System Environment/Daemons
 URL: https://www.varnish-cache.org/

More information about the varnish-commit mailing list