[Secure-testing-commits] r40181 - data/CVE
Santiago Ruano Rincón
santiago at moszumanska.debian.org
Sat Mar 5 16:43:27 UTC 2016
Author: santiago
Date: 2016-03-05 16:43:27 +0000 (Sat, 05 Mar 2016)
New Revision: 40181
Modified:
data/CVE/list
Log:
CVE-2016-2569/squid3 add notes on needed additional patches
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-03-05 14:24:22 UTC (rev 40180)
+++ data/CVE/list 2016-03-05 16:43:27 UTC (rev 40181)
@@ -738,6 +738,8 @@
- squid <not-affected> (Vulnerable code not present)
NOTE: http://www.squid-cache.org/Advisories/SQUID-2016_2.txt
NOTE: http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-13991.patch
+ NOTE: http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-13998.patch
+ NOTE: http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-13999.patch
NOTE: http://www.squid-cache.org/Versions/v4/changesets/squid-4-14552.patch
NOTE: Upstream confirmed it does not affect squid 2.7.x
CVE-2016-2568 [Program run via pkexec as unprivileged user can escape to parent session via TIOCSTI ioctl]
More information about the Secure-testing-commits
mailing list