Request 796564: Submit squid - openSUSE Build Service

Overview

Request 796564 accepted

- Update to squid 4.11:
* Fix incorrect buffer handling that can result in cache
poisoning, remote execution, and denial of service attacks when
processing ESI responses
(CVE-2019-12519, CVE-2019-12521, bsc#1169659)
* Fixes possible information disclosure when translating
FTP server listings into HTTP responses.
(CVE-2019-12528, bsc#1162689)
* Fixes possible denial of service caused by incorrect buffer
management ext_lm_group_acl when processing NTLM Authentication
credentials. (CVE-2020-8517, bsc#1162691)
* Fixes a potential remote execution vulnerability when using
HTTP Digest Authentication (CVE-2020-11945, bsc#1170313)
* Fixes problem when reconfigure killed Coordinator in
SMP+ufs configurations (#556)

Created by adamm about 4 years ago
In state accepted

Submit squid

Comments for request 796564 0

Login required, please login in order to comment

Request History

adamm created request about 4 years ago

- Update to squid 4.11:
* Fix incorrect buffer handling that can result in cache
poisoning, remote execution, and denial of service attacks when
processing ESI responses
(CVE-2019-12519, CVE-2019-12521, bsc#1169659)
* Fixes possible information disclosure when translating
FTP server listings into HTTP responses.
(CVE-2019-12528, bsc#1162689)
* Fixes possible denial of service caused by incorrect buffer
management ext_lm_group_acl when processing NTLM Authentication
credentials. (CVE-2020-8517, bsc#1162691)
* Fixes a potential remote execution vulnerability when using
HTTP Digest Authentication (CVE-2020-11945, bsc#1170313)
* Fixes problem when reconfigure killed Coordinator in
SMP+ufs configurations (#556)

factory-auto added opensuse-review-team as a reviewer about 4 years ago

Please review sources

factory-auto accepted review about 4 years ago

Check script succeeded

licensedigger accepted review about 4 years ago

ok

dimstar_suse added as a reviewer about 4 years ago

Being evaluated by staging project "openSUSE:Factory:Staging:adi:60"

dimstar_suse accepted review about 4 years ago

Picked "openSUSE:Factory:Staging:adi:60"

dimstar accepted review about 4 years ago

dimstar_suse accepted review about 4 years ago

Staging Project openSUSE:Factory:Staging:adi:60 got accepted.

dimstar_suse approved review about 4 years ago

Staging Project openSUSE:Factory:Staging:adi:60 got accepted.

dimstar_suse accepted request about 4 years ago

Staging Project openSUSE:Factory:Staging:adi:60 got accepted.

openSUSE Build Service is sponsored by