squid 4.13-1ubuntu4.1 source package in Ubuntu
Changelog
squid (4.13-1ubuntu4.1) hirsute-security; urgency=medium
* SECURITY UPDATE: DoS via buffer-management bug
- debian/patches/CVE-2021-28651.patch: fix memory leak in src/urn.cc.
- CVE-2021-28651
* SECURITY UPDATE: DoS via incorrect parser validation
- debian/patches/CVE-2021-28652.patch: fix cache manager URL parsing in
src/CacheManager.h, src/cache_manager.cc, src/mgr/QueryParams.cc,
src/mgr/QueryParams.h, src/tests/stub_libmgr.cc,
src/tests/testCacheManager.cc, src/tests/testCacheManager.h.
- CVE-2021-28652
* SECURITY UPDATE: DoS via certain response header
- debian/patches/CVE-2021-28662.patch: limit
HeaderLookupTable_t::lookup() to BadHdr and specific IDs in
src/http/RegisteredHeaders.cc.
- CVE-2021-28662
* SECURITY UPDATE: DoS via HTTP Range request
- debian/patches/CVE-2021-3180x.patch: handle more Range requests in
src/HttpHdrRange.cc, src/HttpHeaderRange.h, src/client_side.cc,
src/client_side_request.cc, src/client_side_request.h,
src/http/Stream.cc.
- CVE-2021-31806
- CVE-2021-31807
- CVE-2021-31808
* SECURITY UPDATE: DoS via HTTP response
- debian/patches/CVE-2021-33620.patch: handle more partial responses in
src/HttpHdrContRange.cc, src/HttpHeaderRange.h,
src/clients/Client.cc, src/http/Stream.cc.
- CVE-2021-33620
-- Marc Deslauriers <email address hidden> Wed, 02 Jun 2021 10:23:36 -0400
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Hirsute
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- web
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| squid_4.13.orig.tar.xz | 2.3 MiB | 6891a0f540e60779b4f24f1802a302f813c6f473ec7336a474ed68c3e2e53ee0 |
| squid_4.13.orig.tar.xz.asc | 1.2 KiB | 3e145c4af6322ff55bf299ff166c824c092ba2b62f822c8fdd7f885ec90c2ad2 |
| squid_4.13-1ubuntu4.1.debian.tar.xz | 54.6 KiB | 1179cc67980a319ab1ebf0dfa855d671de349aecbda6a433de4dbf9bb8463204 |
| squid_4.13-1ubuntu4.1.dsc | 2.9 KiB | 7b02561efdbae303d34e0070b49788bd8ab63cbceec8e36810263fc3f59361cd |
Available diffs
Binary packages built by this source
- squid: No summary available for squid in ubuntu hirsute.
No description available for squid in ubuntu hirsute.
- squid-cgi: No summary available for squid-cgi in ubuntu hirsute.
No description available for squid-cgi in ubuntu hirsute.
- squid-cgi-dbgsym: No summary available for squid-cgi-dbgsym in ubuntu hirsute.
No description available for squid-cgi-dbgsym in ubuntu hirsute.
- squid-common: No summary available for squid-common in ubuntu hirsute.
No description available for squid-common in ubuntu hirsute.
- squid-dbgsym: No summary available for squid-dbgsym in ubuntu hirsute.
No description available for squid-dbgsym in ubuntu hirsute.
- squid-purge: No summary available for squid-purge in ubuntu hirsute.
No description available for squid-purge in ubuntu hirsute.
- squid-purge-dbgsym: No summary available for squid-purge-dbgsym in ubuntu hirsute.
No description available for squid-purge-dbgsym in ubuntu hirsute.
- squidclient: No summary available for squidclient in ubuntu hirsute.
No description available for squidclient in ubuntu hirsute.
- squidclient-dbgsym: No summary available for squidclient-dbgsym in ubuntu hirsute.
No description available for squidclient-dbgsym in ubuntu hirsute.
