[Bug 1059887] Re: Sync tinyproxy 1.8.3-3 (universe) from Debian unstable (main)
Logan Rosen
1059887 at bugs.launchpad.net
Mon Oct 1 23:06:16 UTC 2012
** Attachment added: "build log"
https://bugs.launchpad.net/ubuntu/+source/tinyproxy/+bug/1059887/+attachment/3363140/+files/last_operation.log
--
You received this bug notification because you are a member of Ubuntu
Sponsors Team, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1059887
Title:
Sync tinyproxy 1.8.3-3 (universe) from Debian unstable (main)
Status in “tinyproxy” package in Ubuntu:
New
Bug description:
Please sync tinyproxy 1.8.3-3 (universe) from Debian unstable (main)
Changelog entries since current quantal version 1.8.3-2:
tinyproxy (1.8.3-3) unstable; urgency=high
* Add patches for CVE-2012-3505 (closes: #685281):
- CVE-2012-3505-tinyproxy-limit-headers.patch: Limit the number of
headers to prevent DoS attacks.
- CVE-2012-3505-tinyproxy-randomized-hashmaps.patch: Randomize hashmaps
in order to avoid fake headers getting included in the same bucket,
allowing for DoS attacks.
Bug reported and patches contributed by gpernot.
-- Jordi Mallach <jordi at debian.org> Mon, 24 Sep 2012 21:05:41 +0200
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/tinyproxy/+bug/1059887/+subscriptions
More information about the Ubuntu-sponsors
mailing list