------------------------------------------------------------ Arch Linux Security Warning ALSW 2007-#22 ------------------------------------------------------------
Name: squid Date: 2007-03-31 Severity: Normal Warning #: 2007-#22 ------------------------------------------------------------ Product Background =================== Squid is a full-featured Web proxy cache. Problem Background =================== A flaw was discovered in Squid's handling of the TRACE request method which could lead to a crash. Impact ========= Remote attackers with access to the Squid server could send malicious TRACE requests, and cause a denial of service. Problem Packages =================== Package: squid Repo: extra Group: network Unsafe: < 2.6.STABLE12-1 Safe: >= 2.6.STABLE12-1 Package Fix =================== Upgrade to 2.6.12 =================== Unofficial ArchLinux Security Bug Tracker: http://jjdanimoth.netsons.org/alsw.html Reference(s) =================== http://www.squid-cache.org/Advisories/SQUID-2007_1.txt Conctact ==================== JJDaNiMoTh < jjdanimoth AT gmail DOT com >
signature.asc
Description: OpenPGP digital signature
_______________________________________________ arch mailing list [email protected] http://archlinux.org/mailman/listinfo/arch
