[ubuntu/lucid-security] squid3 3.0.STABLE19-1ubuntu0.2 (Accepted)

[Mahyuddin Susanto]

squid3 (3.0.STABLE19-1ubuntu0.2) lucid-security; urgency=low

  * SECURITY UPDATE: Fix DoS (assertion failure) via a crafted DNS packet
    that only contains header. (LP: #907686)
    - debian/patches/CVE-2010-0308.dpatch: patch derived from upstream.
    - CVE-2010-0308
  * SECURITY UDPATE: Fix DoS (NULL pointer dereference and daemon crash) via
    crafted packets to the HTCP port. (LP: #907690)
    - debian/patches/CVE-2010-0639.dpatch: patch derived from upstream.
    - CVE-2010-0639
  * SECURITY UPDATE: Fix DoS (memory corruption and daemon restart) or possibly
    have unspecified other impact via a long line in a response by remote
    Gopher servers. (LP: #907687)
    - debian/patches/CVE-2011-3205.dpatch: patch derived from upstream.
    - CVE-2011-3205

Date: Wed, 18 Jan 2012 12:46:59 +0700
Changed-By: Mahyuddin Susanto <udienz at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/lucid/+source/squid3/3.0.STABLE19-1ubuntu0.2
-------------- next part --------------
Format: 1.8
Date: Wed, 18 Jan 2012 12:46:59 +0700
Source: squid3
Binary: squid3 squid3-dbg squid3-common squidclient squid3-cgi
Architecture: source
Version: 3.0.STABLE19-1ubuntu0.2
Distribution: lucid-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Mahyuddin Susanto <udienz at ubuntu.com>
Description: 
 squid3     - A full featured Web Proxy cache (HTTP proxy)
 squid3-cgi - A full featured Web Proxy cache (HTTP proxy) - control CGI
 squid3-common - A full featured Web Proxy cache (HTTP proxy) - common files
 squid3-dbg - A full featured Web Proxy cache (HTTP proxy) - Debug symbols
 squidclient - A full featured Web Proxy cache (HTTP proxy) - control utility
Launchpad-Bugs-Fixed: 907686 907687 907690
Changes: 
 squid3 (3.0.STABLE19-1ubuntu0.2) lucid-security; urgency=low
 .
   * SECURITY UPDATE: Fix DoS (assertion failure) via a crafted DNS packet
     that only contains header. (LP: #907686)
     - debian/patches/CVE-2010-0308.dpatch: patch derived from upstream.
     - CVE-2010-0308
   * SECURITY UDPATE: Fix DoS (NULL pointer dereference and daemon crash) via
     crafted packets to the HTCP port. (LP: #907690)
     - debian/patches/CVE-2010-0639.dpatch: patch derived from upstream.
     - CVE-2010-0639
   * SECURITY UPDATE: Fix DoS (memory corruption and daemon restart) or possibly
     have unspecified other impact via a long line in a response by remote
     Gopher servers. (LP: #907687)
     - debian/patches/CVE-2011-3205.dpatch: patch derived from upstream.
     - CVE-2011-3205
Checksums-Sha1: 
 27bd2f97048ec958a1068a2d58ddb0d8b3882d48 1964 squid3_3.0.STABLE19-1ubuntu0.2.dsc
 0e7496162f03a20ae9d593d684e7989f9e0f77fc 18919 squid3_3.0.STABLE19-1ubuntu0.2.diff.gz
Checksums-Sha256: 
 05e75ae7ba05a6b6b5f51eae1664d55b53af9dd07172f58193c20b83284f1306 1964 squid3_3.0.STABLE19-1ubuntu0.2.dsc
 d924417d6035049c86f57325e1cd6340ae4b6406d8f2f01e287e90e19daa5b7e 18919 squid3_3.0.STABLE19-1ubuntu0.2.diff.gz
Files: 
 ba8625073d68cf9aa429d3624c8e352a 1964 web optional squid3_3.0.STABLE19-1ubuntu0.2.dsc
 5c9e112157a4147506177b2066881173 18919 web optional squid3_3.0.STABLE19-1ubuntu0.2.diff.gz
Original-Maintainer: Luigi Gangitano <luigi at debian.org>