In association with heise online

29 July 2009, 13:51

Security updates for Squid web proxy

  • Twitter
  • Facebook
  • submit to slashdot
  • StumbleUpon
  • submit to reddit

Security updates for the Squid web proxy fix two denial of service vulnerabilities which slow the server or crash it. The problem occurs when crafted HTTP headers and HTTP responses are processed by Squid. Incorrect bounds checking and buffer limits, and incorrect validation are the underlying causes.

The problem exists in all version up to and including 3.0STABLE16 and 3.1.0.11. Updating to version 3.0STABLE17 or 3.1.012 fixes the problem. Patches are also available to resolve the issue.

See also:

(djwm)

Print Version | Send by email | Permalink: http://h-online.com/-742703
 


  • July's Community Calendar





The H Open

The H Security

The H Developer

The H Internet Toolkit