Source: squid Version: 4.12-1 Severity: grave Tags: security upstream Justification: user security hole X-Debbugs-Cc: [email protected], Debian Security Team <[email protected]>
Hi, The following vulnerability was published for squid, but there is no CVE assigned yet: | SQUID-2020:9 Denial of Service processing Cache Digest Response If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. (once it is assigned if that happends before the upload). For further information see: [0] https://github.com/squid-cache/squid/security/advisories/GHSA-vvj7-xjgq-g2jg [1] http://www.squid-cache.org/Versions/v4/changesets/SQUID-2020_9.patch Please adjust the affected versions in the BTS as needed. Regards, Salvatore
