[Secure-testing-team] Bug#823968: squid3: CVE-2016-4553 CVE-2016-4554 CVE-2016-4555 CVE-2016-4556

Tue May 10 20:10:35 UTC 2016

Source: squid3
Version: 3.5.17-1
Severity: important
Tags: security upstream fixed-upstream

Hi

There is a new upstream version of squid3 to address CVE-2016-4553
CVE-2016-4554 CVE-2016-4555 CVE-2016-4556. But more information is
provided via the security-tracker:

 [1] https://security-tracker.debian.org/CVE-2016-4553
 [2] https://security-tracker.debian.org/CVE-2016-4554
 [3] https://security-tracker.debian.org/CVE-2016-4555
 [4] https://security-tracker.debian.org/CVE-2016-4556
 [5] http://www.squid-cache.org/Advisories/SQUID-2016_7.txt
 [6] http://www.squid-cache.org/Advisories/SQUID-2016_8.txt
 [7] http://www.squid-cache.org/Advisories/SQUID-2016_9.txt

Please include CVE identifiers when fixing the issue, and could you
check the older versions and update affected version? Santiago Ruano
Rincón has as well already done some research.

Regards,
Salvatore