[Secure-testing-team] Bug#759509: squid3: CVE-2014-3609: Denial of service in request processing

Salvatore Bonaccorso carnil at debian.org
Wed Aug 27 20:30:05 UTC 2014

Previous message: [Secure-testing-team] Why Buy ECR?
Next message: [Secure-testing-team] Bug#759526: not-yet-commons-ssl: CVE-2014-3604
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Source: squid3
Version: 3.1.6-1
Severity: important
Tags: security upstream patch fixed-upstream

Hi

Squid3 is vulnerable to a denial of service attack when processing
Range requests, see [1].

 [1] http://www.squid-cache.org/Advisories/SQUID-2014_2.txt

Regards,
Salvatore

Previous message: [Secure-testing-team] Why Buy ECR?
Next message: [Secure-testing-team] Bug#759526: not-yet-commons-ssl: CVE-2014-3604
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Secure-testing-team mailing list