Committersthen (1)
BranchesOPENBSD_6_2 (1)


OpenBSD/ports 4lrZkTywww/squid Makefile, www/squid/patches patch-src_client_side_request_cc patch-src_esi_CustomParser_cc

by sthen on ⎇
   http://www.squid-cache.org/Advisories/SQUID-2018_1.txt

    Due to incorrect pointer handling Squid is vulnerable to denial
    of service attack when processing ESI responses.

    This problem allows a remote server delivering certain ESI
    response syntax to trigger a denial of service for all clients
    accessing the Squid service.

   http://www.squid-cache.org/Advisories/SQUID-2018_2.txt

    Due to incorrect pointer handling Squid is vulnerable to denial
    of service attack when processing ESI responses or downloading
    intermediate CA certificates.

    This problem allows a remote client delivering certain HTTP
    requests in conjunction with certain trusted server responses to
    trigger a denial of service for all clients accessing the Squid
    service.
VersionDeltaFile
1.202.2.1+2-1www/squid/Makefile
1.1.2.1+1-1www/squid/patches/patch-src_client_side_request_cc
1.1.2.1+1-1www/squid/patches/patch-src_esi_CustomParser_cc
+4-33 files

UnifiedSplitRaw