CVE-2010-2951 and CVE-2010-3072 still exists in Lucid and CVE-2010-2951 still exists in maverick
Bug #718127 reported by
Mahyuddin Susanto
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
squid3 (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned | ||
Lucid |
Fix Released
|
Undecided
|
Unassigned | ||
Maverick |
Fix Released
|
Undecided
|
Unassigned | ||
Natty |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: squid3
squid3 in lucid still having CVE-2010-2951 and CVE-2010-3072, i see the patch doesn't exits in debian/patches/
and in maverick only CVE-2010-2951, and CVE-2010-3072 patch appear in patches
description: | updated |
security vulnerability: | no → yes |
Changed in squid3 (Ubuntu Lucid): | |
status: | Incomplete → In Progress |
To post a comment you must log in.
squid3 (3.1.6-1.2ubuntu1) natty; urgency=low
* Merge from debian unstable. (LP: #717654) Remaining changes: squid3. ufw.profile: Provide ufw profile patches/ 18-fix- ftbfs-binutils- gold.dpatch: Add sasl2 and kerberos
- debian/
* debian/
library in LDADD to fix FTBFS binutils-gold with --as-needed. (LP: #717653)
squid3 (3.1.6-1.2) unstable; urgency=low
* Non-maintainer upload.
* Fix DoS while processing large DNS replies with no IPv6 resolver present
(CVE-2010-2951) (Closes: #599709)
-- Mahyuddin Susanto <email address hidden> Sun, 13 Feb 2011 00:43:10 +0700