Package: squid3 Severity: grave Tags: security patch Hi, the following security issue was published for squid3: | Due to incorrect buffer limits and related bound checks Squid | is vulnerable to a denial of service attack when processing | specially crafted requests or responses. | | Due to incorrect data validation Squid is vulnerable to a denial | of service attack when processing specially crafted responses.
Unfortunately there is no CVE id for this yet. For further information see: http://www.squid-cache.org/Advisories/SQUID-2009_2.txt this also links patches. Cheers Nico P.S. stable update on its way -- Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0AAAA For security reasons, all text in this mail is double-rot13 encrypted.
pgpkeOoBZuura.pgp
Description: PGP signature