FS#6773 : Warning on squid

FS#6773 - Warning on squid

Attached to Project: Arch Linux
Opened by DaNiMoTh (DaNiMoTh) - Saturday, 31 March 2007, 19:16 GMT
Last edited by Roman Kyrylych (Romashka) - Tuesday, 03 April 2007, 17:56 GMT

Task Type	Bug Report
Category	Security
Status	Closed
Assigned To	Kevin Piche (kpiche)
Architecture	i686
Severity	High
Priority	Normal
Reported Version	0.7.2 Gimmick
Due in Version	Undecided
Due Date	Undecided
Percent Complete
Votes	0
Private	No

Details

------------------------------------------------------------
Arch Linux Security Warning ALSW 2007-#22
------------------------------------------------------------

Name: squid
Date: 2007-03-31
Severity: Normal
Warning #: 2007-#22

------------------------------------------------------------

Product Background
===================
Squid is a full-featured Web proxy cache.

Problem Background
===================
A flaw was discovered in Squid's handling of the TRACE request method
which could lead to a crash.

Impact
=========
Remote attackers with access to the Squid
server could send malicious TRACE requests, and cause a denial of
service.

Problem Packages
===================
Package: squid
Repo: extra
Group: network
Unsafe: < 2.6.STABLE12-1
Safe: >= 2.6.STABLE12-1

Package Fix
===================
Upgrade to 2.6.12

===================

Unofficial ArchLinux Security Bug Tracker:
http://jjdanimoth.netsons.org/alsw.html

Reference(s)
===================
http://www.squid-cache.org/Advisories/SQUID-2007_1.txt

This task depends upon

Closed by Andreas Radke (AndyRTR)
Saturday, 07 April 2007, 17:35 GMT
Reason for closing: Fixed

Comment by Andreas Radke (AndyRTR) - Tuesday, 03 April 2007, 04:51 GMT

x86_64 already updated for a while! always have a look at: http://www.archlinux.org/~andyrtr/pkg_diff.html

	Tasks related to this task (0)

Duplicate tasks of this task (0)

Arch Linux

FS#6773 - Warning on squid

Details

Loading...