- -
-
Remove the comment that indicated that updated default.action
- versions are released on their own.
-
-
- -
-
Block 'optimize.indieclick.com/' and
- 'optimized-by.rubiconproject.com/'
-
-
- -
-
Unblock 'adjamblog.wordpress.com/' and
- 'adjamblog.files.wordpress.com/'. Reported by Ryan Farmer in
- #3496116.
-
-
- -
-
Unblock '/.*Bugtracker'. Reported by pwhk in #3522341.
-
-
- -
-
Add test URLs for '.freebsd.org' and '.watson.org'.
-
-
- -
-
Unblock '.urbandictionary.com/popular'.
-
-
- -
-
Block '.adnxs.com/'.
-
-
- -
-
Block 'farm.plista.com/widgetdata.php'.
-
-
- -
-
Block 'rotation.linuxnewmedia.com/'.
-
-
- -
-
Block 'reklamy.sfd.pl/'. Reported by kacperdominik in
- #3399948.
-
-
- -
-
Block 'g.adspeed.net/'.
-
-
- -
-
Unblock 'websupport.wdc.com/'. Reported by Adam Piggot in
- #3577851.
-
-
- -
-
Block '/openx/www/delivery/'.
-
-
- -
-
Disable fast-redirects for '.googleapis.com/'.
-
-
- -
-
Block 'imp.double.net/'. Reported by David Bo in #3070411.
-
-
- -
-
Block 'gm-link.com/' whis is used for email tracking. Reported
- by David Bo in #1812733.
-
-
- -
-
Verify that requests to "bwp." are blocked. URL taken from
- #1736879 submitted by Francois Marier.
-
-
- -
-
Block '/.*bannerid='. Reported by Adam Piggott in
- #2975779.
-
-
- -
-
Block 'cltomedia.info/delivery/' and '.adexprt.com/'.
- Anonymously reported in #2965254.
-
-
- -
-
Block 'de17a.com/'. Reported by David Bo in #3061472.
+ Properly parse ACL directives with ports when compiled with
+ HAVE_RFC2553. Previously the port wasn't removed from the host
+ and in case of 'permit-access 127.0.0.1 example.org:80' Privoxy
+ would try (and fail) to resolve "example.org:80" instead of
+ example.org. Reported by Pak Chan on ijbswa-users@.
-
-
Block 'oskar.tradera.com/'. Reported by David Bo in
- #3060596.
+ Check requests more carefully before serving them forcefully
+ when blocks aren't enforced. Privoxy always adds the force token
+ at the beginning of the path, but would previously accept it
+ anywhere in the request line. This could result in requests being
+ served that should be blocked. For example in case of pages that
+ were loaded with force and contained JavaScript to create
+ additionally requests that embed the origin URL (thus inheriting
+ the force prefix). The bug is not considered a security issue and
+ the fix does not make it harder for remote sites to intentionally
+ circumvent blocks if Privoxy isn't configured to enforce them.
+ Fixes #1695 reported by Korda.
-
-
Block '/scripts/webtrends\.js'. Reported by johnd16 in
- #3002729.
+ Normalize the request line in intercepted requests to make
+ rewriting the destination more convenient. Previously rewrites
+ for intercepted requests were expected to fail unless $hostport
+ was being used, but they failed "the wrong way" and would result
+ in an out-of-memory message (vanilla host patterns) or a crash
+ (extended host patterns). Reported by "Guybrush Threepwood" in
+ #1694.
-
-
Block requests for 'pool.*.adhese.com/'. Reported by johnd16
- in #3002716.
+ Enable socket lingering for the correct socket. Previously it
+ was repeatedly enabled for the listen socket instead of for the
+ accepted socket. The bug was found by code inspection and did not
+ cause any (reported) issues.
-
-
Update path pattern for Coremetrics and add tests. Pattern and
- URLs submitted by Adam Piggott #3168443.
+ Detect and reject parameters for parameter-less actions.
+ Previously they were silently ignored.
-
-
Enable +fast-redirects{check-decoded-url} for 'tr.anp.se/'.
- Reported by David Bo in #3268832.
+ Fixed invalid reads in internal and outdated pcre code. Found
+ with afl-fuzz and AddressSanitizer.
-
-
Unblock '.conrad.se/newsletter/banners/'. Reported by David Bo
- in #3413824.
+ Prevent invalid read when loading invalid action files. Found
+ with afl-fuzz and AddressSanitizer.
-
-
Block '.tynt.com/'. Reported by Dan Stahlke in #3421767.
+ Windows build: Use the correct function to close the event
+ handle. It's unclear if this bug had a negative impact on
+ Privoxy's behaviour. Reported by Jarry Xu in #891.
-
-
Unblock '.bbci.co.uk/radio/'. Reported by Adam Piggott in
- #3569603.
-
-
- -
-
Block requests to 'service.maxymiser.net/'. Reported by
- johnd16 in #3118401 (with a previous URL).
-
-
- -
-
Disable fast-redirects for Google's "let's pretend your
- computer is infected" page.
-
-
- -
-
Unblock '/.*download' to resolve actionsfile feedback
- #3498129. Submitted by Steven Kolins (soundcloud.com not
- working).
-
-
- -
-
Unblock '.wlxrs.com/' which is required by hotmail.com. Fixes
- #3413827 submitted by David Bo.
-
-
- -
-
Add two unblock patterns for popup radio and TV players.
- Submitted by Adam Piggott in #3596089.
+ In case of invalid forward-socks5(t) directives, use the
+ correct directive name in the error messages. Previously they
+ referred to forward-socks4t failures. Reported by Joel Verhagen
+ in #889.