CVSROOT: /cvs
Module name: ports
Changes by: [email protected] 2018/04/19 15:49:35
Modified files:
www/squid : Makefile
www/squid/patches: patch-src_client_side_request_cc
Log message:
fix http://www.squid-cache.org/Advisories/SQUID-2018_3.txt
Due to incorrect pointer handling Squid is vulnerable to denial
of service attack when processing ESI responses.
This problem allows a remote server delivering ESI responses
to trigger a denial of service for all clients accessing the
Squid service.
This problem is limited to Squid operating as reverse proxy.
