Navigation:
Browse pkgsrc
(this page)
New packages:Log Message:
Pullup ticket #5752 - requested by taca
www/squid3: security patch
Revisions pulled up:
- www/squid3/Makefile 1.81
- www/squid3/distinfo 1.63
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: taca
Date: Mon Apr 30 08:57:49 UTC 2018
Modified Files:
pkgsrc/www/squid3: Makefile distinfo
Log Message:
www/squid3: Add official security patch SQUID-2018_3
Add security patch for SQUID-2018_3.
Bump PKGREVISION.
http://www.squid-cache.org/Advisories/SQUID-2018_3.txt
__________________________________________________________________
Problem Description:
Due to incorrect pointer handling Squid is vulnerable to denial
of service attack when processing ESI responses.
__________________________________________________________________
Severity:
This problem allows a remote server delivering ESI responses
to trigger a denial of service for all clients accessing the
Squid service.
This problem is limited to Squid operating as reverse proxy.
To generate a diff of this commit:
cvs rdiff -u -r1.80 -r1.81 pkgsrc/www/squid3/Makefile
cvs rdiff -u -r1.62 -r1.63 pkgsrc/www/squid3/distinfo
| Revision | Action | file |
| 1.80.2.1 | modify | pkgsrc/www/squid3/Makefile |
| 1.62.2.1 | modify | pkgsrc/www/squid3/distinfo |