[ubuntu/jaunty-security] squid_2.7.STABLE3-4.1ubuntu1.1_sparc_translations.tar.gz (delayed), squid_2.7.STABLE3-4.1ubuntu1.1_amd64_translations.tar.gz, squid_2.7.STABLE3-4.1ubuntu1.1_i386_translations.tar.gz, squid_2.7.STABLE3-4.1ubuntu1.1_hppa_translations.tar.gz, squid, squid_2.7.STABLE3-4.1ubuntu1.1_lpia_translations.tar.gz, squid_2.7.STABLE3-4.1ubuntu1.1_armel_translations.tar.gz, squid_2.7.STABLE3-4.1ubuntu1.1_ia64_translations.tar.gz, squid_2.7.STABLE3-4.1ubuntu1.1_powerpc_translations.tar.gz 2.7.STABLE3-4.1ubuntu1.1 (Accepted)

Ubuntu Installer archive at ubuntu.com
Tue Feb 16 15:03:38 GMT 2010 

squid (2.7.STABLE3-4.1ubuntu1.1) jaunty-security; urgency=low

  * SECURITY UPDATE: denial of service via crafted auth header
    - debian/patches/71-CVE-2009-2855.dpatch: correctly parse delimiters in
      src/HttpHeaderTools.c.
    - CVE-2009-2855
  * SECURITY UPDATE: denial of service via crafted DNS packet
    - debian/patches/72-CVE-2010-0308.dpatch: don't abort on error in
      lib/rfc1035.c.
    - CVE-2010-0308

Date: Fri, 12 Feb 2010 13:00:07 -0500
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/jaunty/+source/squid/2.7.STABLE3-4.1ubuntu1.1
-------------- next part --------------
Format: 1.8
Date: Fri, 12 Feb 2010 13:00:07 -0500
Source: squid
Binary: squid squid-common squid-cgi
Architecture: source
Version: 2.7.STABLE3-4.1ubuntu1.1
Distribution: jaunty-security
Urgency: low
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description: 
 squid      - Internet object cache (WWW proxy cache)
 squid-cgi  - Squid cache manager CGI program
 squid-common - Internet object cache (WWW proxy cache) - common files
Changes: 
 squid (2.7.STABLE3-4.1ubuntu1.1) jaunty-security; urgency=low
 .
   * SECURITY UPDATE: denial of service via crafted auth header
     - debian/patches/71-CVE-2009-2855.dpatch: correctly parse delimiters in
       src/HttpHeaderTools.c.
     - CVE-2009-2855
   * SECURITY UPDATE: denial of service via crafted DNS packet
     - debian/patches/72-CVE-2010-0308.dpatch: don't abort on error in
       lib/rfc1035.c.
     - CVE-2010-0308
Checksums-Sha1: 
 629c6e7099cc1f5a8604a873c27ebec678466256 1261 squid_2.7.STABLE3-4.1ubuntu1.1.dsc
 024763dae36bec157b8ca8c09426fc2f3637b417 309541 squid_2.7.STABLE3-4.1ubuntu1.1.diff.gz
Checksums-Sha256: 
 f8d8ffe7d27c56f1c3fe25490f761a2821d5f550e3ce41947728a8160b836673 1261 squid_2.7.STABLE3-4.1ubuntu1.1.dsc
 b4767008e8c8dccd20f9464a75bb9c5c45439a19d5186ab014fe4c649744d371 309541 squid_2.7.STABLE3-4.1ubuntu1.1.diff.gz
Files: 
 c857a6a4117f69d074ac78a3085f75f1 1261 web optional squid_2.7.STABLE3-4.1ubuntu1.1.dsc
 c0849f64ed73fe6e0faa903f02cb5e0c 309541 web optional squid_2.7.STABLE3-4.1ubuntu1.1.diff.gz
Original-Maintainer: Luigi Gangitano <luigi at debian.org>

More information about the Jaunty-changes mailing list