Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b9a1443a by Salvatore Bonaccorso at 2019-11-09T06:57:27Z
Add CVE-2019-21526/squid
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -21643,8 +21643,12 @@ CVE-2019-12527 (An issue was discovered in Squid
4.0.23 through 4.7. When checki
NOTE: The code in squid 3.x limits the amount of input data decoded to
one byte less
NOTE: than the length of the target buffer, whilst in 4.x the entire
input is decoded
NOTE: without regard for the size of the target buffer.
-CVE-2019-12526
+CVE-2019-12526 [Heap Overflow issue in URN processing]
RESERVED
+ - squid <unfixed>
+ - squid3 <removed>
+ NOTE: Squid 4:
http://www.squid-cache.org/Versions/v4/changesets/squid-4-7aa0184a720fd216191474e079f4fe87de7c4f5a.patch
+ NOTE: http://www.squid-cache.org/Advisories/SQUID-2019_7.txt
CVE-2019-12525 (An issue was discovered in Squid 3.3.9 through 3.5.28 and 4.x
through ...)
{DSA-4507-1 DLA-1858-1}
- squid 4.8-1
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/b9a1443a5075c0a474f53478fdf78de773884968
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/b9a1443a5075c0a474f53478fdf78de773884968
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
