[Secure-testing-team] Bug#685281: denial of service via many headers
Thijs Kinkhorst
thijs at debian.org
Sun Aug 19 09:42:57 UTC 2012
Package: tinyproxy
Severity: serious
Tags: security patch
Hi Jordi,
A Denial of Service attack has been reported against tinyproxy:
https://bugs.launchpad.net/ubuntu/+source/tinyproxy/+bug/1036985
https://banu.com/bugzilla/show_bug.cgi?id=110#c2
Can you please see to it that this gets addressed in unstable
(and by extension wheezy)?
Please use CVE-2012-3505 to refer to this issue.
Thanks,
Thijs
-- System Information:
Debian Release: 6.0.5
APT prefers stable
APT policy: (500, 'stable'), (400, 'testing')
Architecture: amd64 (x86_64)
Kernel: Linux 2.6.32-5-amd64 (SMP w/4 CPU cores)
Locale: LANG=nl_NL.UTF-8, LC_CTYPE=nl_NL.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
More information about the Secure-testing-team
mailing list