]> git.ipfire.org Git - ipfire-2.x.git/commit
projects / ipfire-2.x.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 52b08bc) | patch
squid: Patch SQUID-2016:3/CVE-2016-3947
authorMichael Tremer <michael.tremer@ipfire.org>
Tue, 5 Apr 2016 21:52:54 +0000 (22:52 +0100)
committerMichael Tremer <michael.tremer@ipfire.org>
Tue, 5 Apr 2016 21:52:54 +0000 (22:52 +0100)
commitbdb319c0ca21c0540a7f2a652c0c431c6f894593
tree6a51b4c37a8d2f4bb18cd807b672c6ebf2102805tree | snapshot
parent52b08bc1eab066e360f4dfeb5f2c6085be97947acommit | diff
squid: Patch SQUID-2016:3/CVE-2016-3947

http://www.squid-cache.org/Advisories/SQUID-2016_3.txt

 Due to a buffer overrun Squid pinger binary is vulnerable to
 denial of service or information leak attack when processing
 ICMPv6 packets.

 This bug also permits the server response to manipulate other
 ICMP and ICMPv6 queries processing to cause information leak.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
lfs/squid diff | blob | blame | history
src/patches/squid-3.4-13232.patch [new file with mode: 0644] blob
IPFire 2.x development tree