This bug was fixed in the package squid3 - 3.0.STABLE19-1ubuntu0.2
---
squid3 (3.0.STABLE19-1ubuntu0.2) lucid-security; urgency=low
* SECURITY UPDATE: Fix DoS (assertion failure) via a crafted DNS packet
that only contains header. (LP: #907686)
-
debdiff looks good. ACK. I'm building the package now and will release
it today.
Thanks!
** Changed in: squid3 (Ubuntu Lucid)
Status: New = Fix Committed
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to squid3 in Ubuntu.
Maverick-Oneiric have been released now, and will appear in mirrors in
the next few hours.
** Changed in: squid3 (Ubuntu Maverick)
Status: Fix Committed = Fix Released
** Changed in: squid3 (Ubuntu Natty)
Status: Fix Committed = Fix Released
** Changed in: squid3 (Ubuntu Oneiric)
** Patch removed: squid3-lucid.debdiff
https://bugs.launchpad.net/ubuntu/+source/squid3/+bug/907690/+attachment/2643908/+files/squid3-lucid.debdiff
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to squid3 in Ubuntu.
attached new debdiff for lucid-security
** Patch added: squid3_3.0.STABLE19-1ubuntu0.2.dsc.debdiff
https://bugs.launchpad.net/ubuntu/+source/squid3/+bug/907690/+attachment/2680245/+files/squid3_3.0.STABLE19-1ubuntu0.2.dsc.debdiff
** Changed in: squid3 (Ubuntu Lucid)
Status: Incomplete
Thanks for the debdiffs. Sorry for the delay in reviewing them.
ACK for maverick, natty and oneiric. They are being built now and will
be released in a few hours.
NACK for lucid. There seems to be a line missing in the CVE-2011-3205
patch. Could you please check, and attach a fixed debdiff?
** Changed in: squid3 (Ubuntu)
Status: Triaged = New
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to squid3 in Ubuntu.
https://bugs.launchpad.net/bugs/907690
Title:
CVE-2011-3205: DoS (memory corruption and daemon restart) or
** Also affects: squid3 (Ubuntu Lucid)
Importance: Undecided
Status: New
** Also affects: squid3 (Ubuntu Maverick)
Importance: Undecided
Status: New
** Also affects: squid3 (Ubuntu Oneiric)
Importance: Undecided
Status: New
** Also affects: squid3 (Ubuntu Natty)
** This bug has been flagged as a security vulnerability
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-3205
** Patch added: squid3-lucid.debdiff
https://bugs.launchpad.net/ubuntu/+source/squid3/+bug/907690/+attachment/2643908/+files/squid3-lucid.debdiff
--
You
** Patch added: squid3-natty.debdiff
https://bugs.launchpad.net/ubuntu/+source/squid3/+bug/907690/+attachment/2643910/+files/squid3-natty.debdiff
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to squid3 in Ubuntu.
** Patch added: squid3-maverick.debdiff
https://bugs.launchpad.net/ubuntu/+source/squid3/+bug/907690/+attachment/2643909/+files/squid3-maverick.debdiff
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to squid3 in Ubuntu.
** Patch added: squid3-oneiric.debdiff
https://bugs.launchpad.net/ubuntu/+source/squid3/+bug/907690/+attachment/2643911/+files/squid3-oneiric.debdiff
** Changed in: squid3 (Ubuntu)
Status: In Progress = New
** Changed in: squid3 (Ubuntu)
Assignee: Mahyuddin Susanto (udienz) =
12 matches
Mail list logo