[ubuntu/intrepid-security] squid_2.7.STABLE3-1ubuntu2.2_hppa_translations.tar.gz, squid_2.7.STABLE3-1ubuntu2.2_lpia_translations.tar.gz, squid, squid_2.7.STABLE3-1ubuntu2.2_sparc_translations.tar.gz (delayed), squid_2.7.STABLE3-1ubuntu2.2_i386_translations.tar.gz, squid_2.7.STABLE3-1ubuntu2.2_ia64_translations.tar.gz, squid_2.7.STABLE3-1ubuntu2.2_amd64_translations.tar.gz, squid_2.7.STABLE3-1ubuntu2.2_powerpc_translations.tar.gz 2.7.STABLE3-1ubuntu2.2 (Accepted)

Ubuntu Installer archive at ubuntu.com
Tue Feb 16 15:03:44 GMT 2010 

squid (2.7.STABLE3-1ubuntu2.2) intrepid-security; urgency=low

  * SECURITY UPDATE: denial of service via crafted auth header
    - debian/patches/08-CVE-2009-2855.dpatch: correctly parse delimiters in
      src/HttpHeaderTools.c.
    - CVE-2009-2855
  * SECURITY UPDATE: denial of service via crafted DNS packet
    - debian/patches/09-CVE-2010-0308.dpatch: don't abort on error in
      lib/rfc1035.c.
    - CVE-2010-0308

Date: Fri, 12 Feb 2010 13:02:19 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/intrepid/+source/squid/2.7.STABLE3-1ubuntu2.2
-------------- next part --------------
Format: 1.8
Date: Fri, 12 Feb 2010 13:02:19 -0500
Source: squid
Binary: squid squid-common squid-cgi
Architecture: source
Version: 2.7.STABLE3-1ubuntu2.2
Distribution: intrepid-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 squid      - Internet object cache (WWW proxy cache)
 squid-cgi  - Squid cache manager CGI program
 squid-common - Internet object cache (WWW proxy cache) - common files
Changes: 
 squid (2.7.STABLE3-1ubuntu2.2) intrepid-security; urgency=low
 .
   * SECURITY UPDATE: denial of service via crafted auth header
     - debian/patches/08-CVE-2009-2855.dpatch: correctly parse delimiters in
       src/HttpHeaderTools.c.
     - CVE-2009-2855
   * SECURITY UPDATE: denial of service via crafted DNS packet
     - debian/patches/09-CVE-2010-0308.dpatch: don't abort on error in
       lib/rfc1035.c.
     - CVE-2010-0308
Checksums-Sha1: 
 e5932efc1fd904e9d7e5b5b3b7d6d22031028c52 1253 squid_2.7.STABLE3-1ubuntu2.2.dsc
 e42ef15f02cd907146b9c2b80a0ebe38e3ec33b3 304074 squid_2.7.STABLE3-1ubuntu2.2.diff.gz
Checksums-Sha256: 
 957d866c23adb25d9ea33c781347b7fda0aa3292574b26f16bc8e7a6df3bfad0 1253 squid_2.7.STABLE3-1ubuntu2.2.dsc
 b1cfe00cef7c83f65f54f07daeba730494628d8975973d774bdcb67236ab1b5c 304074 squid_2.7.STABLE3-1ubuntu2.2.diff.gz
Files: 
 64d9293267b6958dd3d0ed102c6ee618 1253 web optional squid_2.7.STABLE3-1ubuntu2.2.dsc
 8d6595b133476ebdfd500b41c373618b 304074 web optional squid_2.7.STABLE3-1ubuntu2.2.diff.gz
Original-Maintainer: Luigi Gangitano <luigi at debian.org>

More information about the Intrepid-changes mailing list