1
PublicDateAtUSN: 2016-04-25
2
Candidate: CVE-2016-4051
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4051
6
http://www.squid-cache.org/Advisories/SQUID-2016_5.txt
7
https://marc.info/?l=oss-security&m=146116724827962&w=2
8
https://usn.ubuntu.com/usn/usn-2995-1
10
Buffer overflow in cachemgr.cgi in Squid 2.x, 3.x before 3.5.17, and 4.x
11
before 4.0.9 might allow remote attackers to cause a denial of service or
12
execute arbitrary code by seeding manager reports with crafted data.
17
Discovered-by: Yuriy M. Kaminskiy
21
upstream: http://www.squid-cache.org/Versions/v3/3.2/changesets/SQUID-2016_5.patch
22
upstream: http://www.squid-cache.org/Versions/v3/3.3/changesets/SQUID-2016_5.patch
23
upstream: http://www.squid-cache.org/Versions/v3/3.5/changesets/SQUID-2016_5.patch
24
upstream_squid3: released (3.5.17-1)
25
precise_squid3: released (3.1.19-1ubuntu3.12.04.7)
26
trusty_squid3: released (3.3.8-1ubuntu6.8)
27
vivid/stable-phone-overlay_squid3: DNE
28
vivid/ubuntu-core_squid3: DNE
29
wily_squid3: released (3.3.8-1ubuntu16.3)
30
xenial_squid3: released (3.5.12-1ubuntu7.2)
31
devel_squid3: released (3.5.12-1ubuntu8)