Navigation:
Browse pkgsrc
(this page)| 2018-05-06 13:58:34 by S.P.Zeidler | Files touched by this commit (2) |
Log message:
Pullup ticket #5752 - requested by taca
www/squid3: security patch
Revisions pulled up:
- www/squid3/Makefile 1.81
- www/squid3/distinfo 1.63
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: taca
Date: Mon Apr 30 08:57:49 UTC 2018
Modified Files:
pkgsrc/www/squid3: Makefile distinfo
Log message:
www/squid3: Add official security patch SQUID-2018_3
Add security patch for SQUID-2018_3.
Bump PKGREVISION.
http://www.squid-cache.org/Advisories/SQUID-2018_3.txt
__________________________________________________________________
Problem Description:
Due to incorrect pointer handling Squid is vulnerable to denial
of service attack when processing ESI responses.
__________________________________________________________________
Severity:
This problem allows a remote server delivering ESI responses
to trigger a denial of service for all clients accessing the
Squid service.
This problem is limited to Squid operating as reverse proxy.
To generate a diff of this commit:
cvs rdiff -u -r1.80 -r1.81 pkgsrc/www/squid3/Makefile
cvs rdiff -u -r1.62 -r1.63 pkgsrc/www/squid3/distinfo
|
New packages: