Author: carnil
Date: 2016-03-02 05:59:10 +0000 (Wed, 02 Mar 2016)
New Revision: 40121
Modified:
data/CVE/list
Log:
squid3 issues fixed in unstable, #816011
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-03-01 22:00:51 UTC (rev 40120)
+++ data/CVE/list 2016-03-02 05:59:10 UTC (rev 40121)
@@ -534,14 +534,14 @@
NOTE:
http://www.squid-cache.org/Versions/v4/changesets/squid-4-14548.patch
CVE-2016-2571 (http.cc in Squid 3.x before 3.5.15 and 4.x before 4.0.7
proceeds with ...)
{DLA-445-1}
- - squid3 <unfixed> (bug #816011)
+ - squid3 3.5.15-1 (bug #816011)
- squid <not-affected> (Vulnerable code not present)
NOTE: http://www.squid-cache.org/Advisories/SQUID-2016_2.txt
NOTE:
http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-13990.patch
NOTE:
http://www.squid-cache.org/Versions/v4/changesets/squid-4-14548.patch
NOTE: Upstream confirmed it does not affect squid 2.7.x
CVE-2016-2570 (The Edge Side Includes (ESI) parser in Squid 3.x before 3.5.15
and 4.x ...)
- - squid3 <unfixed> (bug #816011)
+ - squid3 3.5.15-1 (bug #816011)
- squid <not-affected> (Vulnerable code not present)
NOTE: http://www.squid-cache.org/Advisories/SQUID-2016_2.txt
NOTE:
http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-13993.patch
@@ -550,7 +550,7 @@
NOTE: It's maybe too instrusive to fix in 3.1 (squeeze and wheezy).
CVE-2016-2569 (Squid 3.x before 3.5.15 and 4.x before 4.0.7 does not properly
append ...)
{DLA-445-1}
- - squid3 <unfixed> (bug #816011)
+ - squid3 3.5.15-1 (bug #816011)
- squid <not-affected> (Vulnerable code not present)
NOTE: http://www.squid-cache.org/Advisories/SQUID-2016_2.txt
NOTE:
http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-13991.patch
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
