Debian
squid3 package

squid3 3.4.8-6+deb8u3 source package in Debian

Changelog

squid3 (3.4.8-6+deb8u3) jessie-security; urgency=high

  * Non-maintainer upload.
  * Fix CVE-2016-4051: Buffer overflow in cachemgr.cgi.
  * Fix CVE-2016-4052: Multiple stack-based buffer overflows by wrongly
    handling Edge Side Includes (ESI) responses.
  * Fix CVE-2016-4053: Public information disclosure of the server stack
    layout when processing ESI responses.
  * Fix CVE-2016-4054: Remote code execution when processing ESI responses.
  * Fix CVE-2016-4553: Cache Poisoning issue in HTTP Request handling.
  * Fix CVE-2016-4554: Header Smuggling issue in HTTP Request processing.
  * Fix CVE-2016-4555 and CVE-2016-4556: Denial of Service when
    processing ESI responses.
  * debian/rules: include /usr/share/cdbs/1/rules/autoreconf.mk, needed by
    CVE-2016-4051 fix.
  * debian/control: Add Build-depend on dh-autoreconf

 -- Santiago Ruano Rincón <email address hidden>  Fri, 13 May 2016 08:09:16 +0200

Upload details

Uploaded by:
Luigi Gangitano
Uploaded to:
Jessie
Original maintainer:
Luigi Gangitano
Architectures:
any all
Section:
web
Urgency:
Very Urgent

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Downloads

File Size SHA-256 Checksum
squid3_3.4.8-6+deb8u3.dsc 2.3 KiB a88d455811f358543692cc5167771b60e6be77d89935a5bfb36926b15655287c
squid3_3.4.8.orig.tar.bz2 2.9 MiB d0534c1cb6ad7de9e2c9f3fc192df92d4c454e3e4c5e00c5086997709153c455
squid3_3.4.8-6+deb8u3.debian.tar.xz 37.4 KiB b52daf4b74c692be2ae2721e77913f6d18e9919fd37452e9ec92fbc11ffbf983

No changes file available.

Binary packages built by this source