[ubuntu/xenial-security] squid3 3.5.12-1ubuntu7.7 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Mon Jul 15 14:32:30 UTC 2019
squid3 (3.5.12-1ubuntu7.7) xenial-security; urgency=medium
* SECURITY UPDATE: DoS via SNMP memory leak
- debian/patches/CVE-2018-19132.patch: fix leak in src/snmp_core.cc.
- CVE-2018-19132
* SECURITY UPDATE: XSS issues in cachemgr.cgi
- debian/patches/CVE-2019-13345.patch: properly escape values in
tools/cachemgr.cc.
- CVE-2019-13345
squid3 (3.5.12-1ubuntu7.6) xenial; urgency=medium
* d/squid.rc: fix regexp for catching FATAL errors (LP: #1738412)
* d/t/test-squid.py: in xenial, initscript, apparmor profile, pidfile and
process are named squid, not squid3. Get rid of the multiple distro
logic since these tests will be only run on xenial.
* d/t/control: drop uneeded dependency on python-unit.
* d/t/squid: use a shorter shutdown timeout for the tests, so they
run faster
Date: 2019-07-11 18:47:19.452715+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/squid3/3.5.12-1ubuntu7.7
-------------- next part --------------
Sorry, changesfile not available.
More information about the Xenial-changes
mailing list