7.201. squid

Updated squid packages that fix several bugs and add various enhancements are now available for Red Hat Enterprise Linux 6.
Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects.

Upgrade to an upstream version

The squid packages have been upgraded to upstream version 3.1.23, which provides a number of bug fixes and enhancements over the previous version. Among others, this update adds support for the HTTP/1.1 POST and PUT responses with no message body to squid. (BZ#999305)

Bug Fixes

BZ#1202858
During the testing phase, it was discovered that restarting squid caused all files on the system to be deleted. Red Hat has fixed the bug before it could affect any users of squid. As a result, restarting squid does not cause any files on the system to be deleted. This bug was never released neither as part of Red Hat Enterprise Linux, nor as part of any upstream version of the squid packages. For more information about the bug, see the Knowledgebase Solution linked to in the References section.
BZ#1102343
Prior to this update, it was possible to start a new instance of squid while a previous instance was still running. Consequently, the previous instance of squid was running simultaneously with the new instance. This update modifies the squid init script to verify that squid has been terminated before starting a new instance. As a result, the squid init script fails with an error when a new instance is initiated in this scenario, allowing the administrator to properly handle the situation.
BZ#1112842
Under high system load, the squid process sometimes terminated unexpectedly with a segmentation fault during reboot. This update provides better memory handling during reboot, thus fixing this bug.
BZ#1114714
Previously, squid sometimes returned an incorrect tag from the Access Control List (ACL) code when using an external ACL. The bug has been fixed, and squid no longer returns the incorrect ACL tag in this situation.
BZ#1149588
Prior to this update, squid in some cases terminated unexpectedly with the following error message:
xstrdup: tried to dup a NULL pointer!
This update fixes the incorrect error handling that caused this problem. As a result, the described error no longer causes squid to crash.
BZ#1162115
Previously, certain monitoring utilities could not load the Management Information Base (MIB) modules. The obsolete MIB file causing this problem has been updated, and the MIB modules can now be loaded as expected.
BZ#1165618
Previously, it was not possible to log host names. With this update, squid no longer sends malformed DNS PTR queries, and as a result, host names are logged as expected.
BZ#1171967
Prior to this update, squid terminated unexpectedly when it encountered a certain assertion in the squid code. The assertion has been replaced with proper error handling, and squid now handles the described situation gracefully.
BZ#1177413
Previously, squid exceeded the limit of maximum locks set to 65,535 under certain circumstances. Consequently, squid terminated unexpectedly. This update significantly increases the lock limit. The new limit is sufficient to prevent squid from exceeding the maximum limit of locks in usual situations.

Enhancement

BZ#1171947
The squid packages are now built with the "--enable-http-violations" option and allow the user to hide or rewrite HTTP headers.
Users of squid are advised to upgrade to these updated packages, which fix these bugs and add these enhancements. After installing this update, the squid service will be restarted automatically.