Please merge squid 6.6 from Debian unstable
Bug #2055179 reported by
Athos Ribeiro
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
squid (Ubuntu) |
Fix Released
|
Undecided
|
Athos Ribeiro |
Bug Description
This will be a second merge for the nn cycle.
Related branches
~athos-ribeiro/ubuntu/+source/squid:merge-lp2055179-noble
- git-ubuntu bot: Approve
- Andreas Hasenack: Approve
- Canonical Server Reporter: Pending requested
- Canonical Server packageset reviewers: Pending requested
-
Diff: 1483 lines (+1244/-4)12 files modifieddebian/NEWS (+7/-0)
debian/changelog (+988/-0)
debian/control (+3/-2)
debian/patches/0009-Fix-Werror-alloc-size-larger-than-on-GCC-12.patch (+65/-0)
debian/patches/0010-Fix-Werror-sign-compare-on-GCC-13.patch (+24/-0)
debian/patches/90-cf.data.ubuntu.patch (+21/-0)
debian/patches/99-ubuntu-ssl-cert-snakeoil.patch (+28/-0)
debian/patches/series (+4/-0)
debian/rules (+19/-2)
debian/source_squid.py (+54/-0)
debian/tests/upstream-test-suite (+4/-0)
debian/usr.sbin.squid (+27/-0)
CVE References
Changed in squid (Ubuntu): | |
status: | New → In Progress |
assignee: | nobody → Athos Ribeiro (athos-ribeiro) |
Changed in squid (Ubuntu): | |
status: | In Progress → Fix Committed |
To post a comment you must log in.
This bug was fixed in the package squid - 6.6-1ubuntu4
---------------
squid (6.6-1ubuntu4) noble; urgency=medium
* SECURITY UPDATE: DoS via chunked decoder uncontrolled recursion bug patches/ CVE-2024- 25111.patch: fix infinite recursion in
- debian/
src/http.cc, src/http.h.
- CVE-2024-25111
-- Marc Deslauriers <email address hidden> Thu, 14 Mar 2024 10:36:04 -0400