-
Committer:
Package Import Robot
-
Author(s):
Seth Arnold
-
Date:
2013-01-28 21:21:59 UTC
-
mfrom:
(37.1.2 precise-proposed)
-
Revision ID:
package-import@ubuntu.com-20130128212159-de1vim3crdgwpiw0
Tags: 3.1.19-1ubuntu3.12.04.2
* SECURITY UPDATE: denial of service via cachemgr.cgi insufficient input
validation
- debian/patches/98-CVE-2012-5643.patch: modify cachemgr.cc to properly
free memory and handle input in chunks
- Based on
http://www.squid-cache.org/Versions/v3/3.1/changesets/SQUID-2012_1.patch
- CVE-2012-5643
- CVE-2013-0189