Hi, I need help to investigate the aborted POST/PUT vulnerability on 2.4.STABLE6 (version packaged in debian stable). Since 2.4.STABLE6 client_side.c is mostly changed and I cannot verify how to apply the squid-2.5.STABLE7-post.patch and if this fixes the bug.
I'm not even sure that 2.4.STABLE6 is affected. Can somebody provide a proof of concept or directions on how to reproduce the bug? Thanks, L ---------------------------------------------------------------- This message was sent using IMP, the Internet Messaging Program.
