update for squid
This squid update includes several security fixes and
minor changes.
- squid-3.2.x-11823-bnc829084-CVE-2013-4115.diff fixes a buffer
overflow involving very long hostnames. [bnc#829084] CVE-2013-4115
- squid-3.2.x-11823-bnc830319-CVE-2013-4123.diff fixes problems
identifying a port number as specified by the client.
[bnc#830319] CVE-2013-4123
- run logrotate as squid:nogroup [bnc#677335]
-
Submitted by
Roman Drahtmueller (draht)
Fixed bugs
bnc#830319
VUL-0: CVE-2013-4123: squid: SQUID-2013:3 Denial of service in request processing
bnc#677335
VUL-0: logrotate: issues with service owned directories
bnc#829084
VUL-1: CVE-2013-4115: squid: SQUID-2013:2: buffer overflow in HTTP request handling
