1
Candidate: CVE-2012-3505
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3505
6
Tinyproxy 1.8.3 and earlier allows remote attackers to cause a denial of
7
service (CPU and memory consumption) via (1) a large number of headers or
8
(2) a large number of forged headers that trigger hash collisions
13
https://bugs.launchpad.net/ubuntu/+source/tinyproxy/+bug/1036985
14
https://banu.com/bugzilla/show_bug.cgi?id=110#c2
15
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=685281
16
https://bugzilla.redhat.com/show_bug.cgi?id=849368
22
patch: https://banu.com/bugzilla/show_bug.cgi?id=110#c2
23
vendor: http://www.debian.org/security/2012/dsa-2564
24
upstream_tinyproxy: needs-triage
25
hardy_tinyproxy: ignored (reached end-of-life)
26
lucid_tinyproxy: ignored (reached end-of-life)
27
natty_tinyproxy: ignored (reached end-of-life)
28
oneiric_tinyproxy: ignored (reached end-of-life)
29
precise_tinyproxy: released (1.8.3-1ubuntu0.1)
30
quantal_tinyproxy: ignored (reached end-of-life)
31
raring_tinyproxy: ignored (reached end-of-life)
32
saucy_tinyproxy: ignored (reached end-of-life)
33
trusty_tinyproxy: not-affected (1.8.3-3ubuntu1)
34
utopic_tinyproxy: ignored (reached end-of-life)
35
vivid_tinyproxy: ignored (reached end-of-life)
36
vivid/stable-phone-overlay_tinyproxy: DNE
37
vivid/ubuntu-core_tinyproxy: DNE
38
wily_tinyproxy: not-affected (1.8.3-3ubuntu1)
39
devel_tinyproxy: not-affected (1.8.3-3ubuntu1)