[ubuntu/groovy-proposed] squid 4.10-1ubuntu2 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Wed May 13 14:35:13 UTC 2020
squid (4.10-1ubuntu2) groovy; urgency=medium
* SECURITY UPDATE: multiple ESI issues
- debian/patches/CVE-2019-12519_12521.patch: convert parse exceptions
into 500 status response in src/esi/Context.h, src/esi/Esi.cc,
src/esi/Esi.h, src/esi/Expression.cc.
- CVE-2019-12519
- CVE-2019-12521
* SECURITY UPDATE: Digest Authentication nonce replay issue
- debian/patches/CVE-2020-11945.patch: fix auth digest refcount integer
overflow in src/auth/digest/Config.cc.
- CVE-2020-11945
Date: Wed, 13 May 2020 09:51:10 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/squid/4.10-1ubuntu2
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Wed, 13 May 2020 09:51:10 -0400
Source: squid
Architecture: source
Version: 4.10-1ubuntu2
Distribution: groovy
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Changes:
squid (4.10-1ubuntu2) groovy; urgency=medium
.
* SECURITY UPDATE: multiple ESI issues
- debian/patches/CVE-2019-12519_12521.patch: convert parse exceptions
into 500 status response in src/esi/Context.h, src/esi/Esi.cc,
src/esi/Esi.h, src/esi/Expression.cc.
- CVE-2019-12519
- CVE-2019-12521
* SECURITY UPDATE: Digest Authentication nonce replay issue
- debian/patches/CVE-2020-11945.patch: fix auth digest refcount integer
overflow in src/auth/digest/Config.cc.
- CVE-2020-11945
Checksums-Sha1:
e5a7d482d1a76b2473248531ba8011bf70235d2e 2729 squid_4.10-1ubuntu2.dsc
8aad8c2731e5530caa5e60c0d3caeb42edf1e5d6 46940 squid_4.10-1ubuntu2.debian.tar.xz
4b0fdd7c7c8120ad1bc0281a273a984919c7da22 9752 squid_4.10-1ubuntu2_source.buildinfo
Checksums-Sha256:
5dc235e972d4bf2b92fe978c867b29dd374915ec16b8dbffb2d6f7a33374969a 2729 squid_4.10-1ubuntu2.dsc
f5507cac2e7a843b7f8082d5f87f22cfdabf9432530707862fde92f35cd6ea7d 46940 squid_4.10-1ubuntu2.debian.tar.xz
616844c2e7332e682c95d1ee7ea589fdbfce85f3c82cec67abccc07eb6b9b249 9752 squid_4.10-1ubuntu2_source.buildinfo
Files:
2397a70264fedca96b535f494b73e56e 2729 web optional squid_4.10-1ubuntu2.dsc
b88662ed6daf5f7e8da74582c5d61d81 46940 web optional squid_4.10-1ubuntu2.debian.tar.xz
d11c2c941e7ff6bbf4dc62947cc17450 9752 web optional squid_4.10-1ubuntu2_source.buildinfo
Original-Maintainer: Luigi Gangitano <luigi at debian.org>
-----BEGIN PGP SIGNATURE-----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=9MYi
-----END PGP SIGNATURE-----
More information about the Groovy-changes
mailing list