On Thu 04/02/2021 18:08, Stuart Henderson wrote:
> On 2021/02/04 18:39, Bjorn Ketelaars wrote:
> > A newer version of privoxy is available, which addresses 2 CVE's:
> >
> > CVE-2021-20217
> > Prevent an assertion from getting triggered by a crafted CGI request.
> >
> > CVE-2021-20216
> > Fixed a
On 2021/02/04 18:39, Bjorn Ketelaars wrote:
> A newer version of privoxy is available, which addresses 2 CVE's:
>
> CVE-2021-20217
> Prevent an assertion from getting triggered by a crafted CGI request.
>
> CVE-2021-20216
> Fixed a memory leak when decompression fails "unexpectedly".
>
>
A newer version of privoxy is available, which addresses 2 CVE's:
CVE-2021-20217
Prevent an assertion from getting triggered by a crafted CGI request.
CVE-2021-20216
Fixed a memory leak when decompression fails "unexpectedly".
Lightly run tested on amd64.
I think it makes sense to backport