Author: santiago Date: 2016-03-05 16:43:27 +0000 (Sat, 05 Mar 2016) New Revision: 40181
Modified: data/CVE/list Log: CVE-2016-2569/squid3 add notes on needed additional patches Modified: data/CVE/list =================================================================== --- data/CVE/list 2016-03-05 14:24:22 UTC (rev 40180) +++ data/CVE/list 2016-03-05 16:43:27 UTC (rev 40181) @@ -738,6 +738,8 @@ - squid <not-affected> (Vulnerable code not present) NOTE: http://www.squid-cache.org/Advisories/SQUID-2016_2.txt NOTE: http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-13991.patch + NOTE: http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-13998.patch + NOTE: http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-13999.patch NOTE: http://www.squid-cache.org/Versions/v4/changesets/squid-4-14552.patch NOTE: Upstream confirmed it does not affect squid 2.7.x CVE-2016-2568 [Program run via pkexec as unprivileged user can escape to parent session via TIOCSTI ioctl] _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits