-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Package : pound Version : 2.6-6+deb8u3 CVE ID : CVE-2016-10711
A regression has been found in the patch for CVE-2016-10711 of pound, a reverse proxy, load balancer and HTTPS front-end for Web servers.
Without the fix pound can be tricked to use 100% CPU. For Debian 8 "Jessie", this problem has been fixed in version 2.6-6+deb8u3. We recommend that you upgrade your pound packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQKTBAEBCgB9FiEEYgH7/9u94Hgi6ruWlvysDTh7WEcFAl6vBohfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDYy MDFGQkZGREJCREUwNzgyMkVBQkI5Njk2RkNBQzBEMzg3QjU4NDcACgkQlvysDTh7 WEd1eQ//cGapr+raDw2NgP92+y9LFmN48epJ9MMn6kh8eux3G0q3FSr0/kJmZJrV j7eZy3LaPcbknVEN+2PWrdINNygsj606V5xIneHTEB96QJQFiSlkgMUo5sjjB3BD hlYx7/Vfwh8fPYIQBxoUT4MiRPXmL4c36FqkKe6fKuvWkzyAzL/R5i9gYrVG0CyY 1NkK6707SgmSUmzRYZSoSkNgqr4jAkpUHF2qQND5nvZCGPzCWMp9QVnzi5KMVFlE aM+rMYD91hQAdT51bcTwem2AnUGlSRy5QH9zD+rfpsggugXYgzsP7USxlNhewmcP RS6mdMYt7MDp+l5Geo0wA8q23KZNqo5higd9yuvDmK2gKoefREa1ihZB3ce/ZdZd yiIOQpkTRp3BEN7XHTfsJAZ05WTwa+5hyYxRjCGOrHHafiY+VwuAF538W7pOiIp0 6YmlbjoenyQaSX+ElF8qsJ9RQglWD/Zrd7kqLXxxLhRDufK/dvkR1PW/kyDawBGl geGYhb6IJLBnlPYwj53OX3DG9OhL1AD9WSQIvW9QDPRwHYPs4aDNgNWhe0Huj1CQ vCu18RyZ637Wgh7ry8UHuWA2z1+zR33hC4Gt/UcZ1QU46KZgBZFADh+nsYFMHoyf tyBk9wHQDHcys8pcAqqcP6FsBS3kL/9mqt9L28Pm/S0qdR8Dmdc= =io0x -----END PGP SIGNATURE-----
