squid 4.10-1ubuntu1.4 source package in Ubuntu
Changelog
squid (4.10-1ubuntu1.4) focal-security; urgency=medium
* SECURITY UPDATE: DoS via buffer-management bug
- debian/patches/CVE-2021-28651.patch: fix memory leak in src/urn.cc.
- CVE-2021-28651
* SECURITY UPDATE: DoS via incorrect parser validation
- debian/patches/CVE-2021-28652.patch: fix cache manager URL parsing in
src/CacheManager.h, src/cache_manager.cc, src/mgr/QueryParams.cc,
src/mgr/QueryParams.h, src/tests/stub_libmgr.cc,
src/tests/testCacheManager.cc, src/tests/testCacheManager.h.
- CVE-2021-28652
* SECURITY UPDATE: DoS via certain response header
- debian/patches/CVE-2021-28662.patch: limit
HeaderLookupTable_t::lookup() to BadHdr and specific IDs in
src/http/RegisteredHeaders.cc.
- CVE-2021-28662
* SECURITY UPDATE: DoS via HTTP Range request
- debian/patches/CVE-2021-3180x.patch: handle more Range requests in
src/HttpHdrRange.cc, src/HttpHeaderRange.h, src/client_side.cc,
src/client_side_request.cc, src/client_side_request.h,
src/http/Stream.cc.
- CVE-2021-31806
- CVE-2021-31807
- CVE-2021-31808
* SECURITY UPDATE: DoS via HTTP response
- debian/patches/CVE-2021-33620.patch: handle more partial responses in
src/HttpHdrContRange.cc, src/HttpHeaderRange.h,
src/clients/Client.cc, src/http/Stream.cc.
- CVE-2021-33620
-- Marc Deslauriers <email address hidden> Wed, 02 Jun 2021 10:32:46 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Focal
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- web
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| squid_4.10.orig.tar.xz | 2.3 MiB | 98f0100afd8a42ea5f6b81eb98b0e4b36d7a54beab1c73d2f1705ab49b025f1f |
| squid_4.10-1ubuntu1.4.debian.tar.xz | 60.1 KiB | ac052f712903147ed67c68f591b61b37780b0c80ac0eaefebf0be7a7b683ea34 |
| squid_4.10-1ubuntu1.4.dsc | 2.7 KiB | e6dd8a3f5286c98430a69e1110f9dc42f1b495740e57ac0b74d4b76b9cd1c71d |
Available diffs
- diff from 4.10-1ubuntu1.3 to 4.10-1ubuntu1.4 (11.3 KiB)
Binary packages built by this source
- squid: Full featured Web Proxy cache (HTTP proxy)
Squid is a high-performance proxy caching server for web clients, supporting
FTP, gopher, ICY and HTTP data objects.
- squid-cgi: Full featured Web Proxy cache (HTTP proxy) - control CGI
Squid is a high-performance proxy caching server for web clients, supporting
FTP, gopher, ICY and HTTP data objects.
.
This package contains a CGI program that can be used to query and administrate
a `squid' proxy cache through a web browser.
- squid-cgi-dbgsym: debug symbols for squid-cgi
- squid-common: Full featured Web Proxy cache (HTTP proxy) - common files
Squid is a high-performance proxy caching server for web clients, supporting
FTP, gopher, ICY and HTTP data objects.
.
This package contains common files (MIB and icons)
- squid-dbgsym: debug symbols for squid
- squid-purge: Full featured Web Proxy cache (HTTP proxy) - cache management utility
Squid is a high-performance proxy caching server for web clients, supporting
FTP, gopher, ICY and HTTP data objects.
.
This package contains a small utility that can be used to manage the disk cache
from the command line.
- squid-purge-dbgsym: debug symbols for squid-purge
- squidclient: Full featured Web Proxy cache (HTTP proxy) - HTTP(S) message utility
Squid is a high-performance proxy caching server for web clients, supporting
FTP, gopher, ICY and HTTP data objects.
.
This package contains a small utility that can be used to get URLs from the
command line.
- squidclient-dbgsym: debug symbols for squidclient
