Luigi Gangitano wrote:
An updated package is building right now for etch/sid.
Security Team, please notice that squid-2.5.9 which is shipped with
sarge is not vulnerable, since:
- - the ftp bug (SA23767) was introduced by a patch added in squid-2.5-
STABLE11, see
Package: squid
Version: 2.6.5-3
Severity: important
Tags: security
Two vulnerabilities have been reported in Squid, which can be exploited
by malicious people to cause a DoS (Denial of Service).
1) An error in the handling of certain FTP URL requests can be exploited
to crash Squid by visiting a
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
An updated package is building right now for etch/sid.
Security Team, please notice that squid-2.5.9 which is shipped with
sarge is not vulnerable, since:
- - the ftp bug (SA23767) was introduced by a patch added in squid-2.5-
STABLE11, see
3 matches
Mail list logo