[Git][security-tracker-team/security-tracker][master] Add CVE-2019-21526/squid

Sat Nov 9 06:58:03 GMT 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b9a1443a by Salvatore Bonaccorso at 2019-11-09T06:57:27Z
Add CVE-2019-21526/squid

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -21643,8 +21643,12 @@ CVE-2019-12527 (An issue was discovered in Squid 4.0.23 through 4.7. When checki
 	NOTE: The code in squid 3.x limits the amount of input data decoded to one byte less
 	NOTE: than the length of the target buffer, whilst in 4.x the entire input is decoded
 	NOTE: without regard for the size of the target buffer.
-CVE-2019-12526
+CVE-2019-12526 [Heap Overflow issue in URN processing]
 	RESERVED
+	- squid <unfixed>
+	- squid3 <removed>
+	NOTE: Squid 4: http://www.squid-cache.org/Versions/v4/changesets/squid-4-7aa0184a720fd216191474e079f4fe87de7c4f5a.patch
+	NOTE: http://www.squid-cache.org/Advisories/SQUID-2019_7.txt
 CVE-2019-12525 (An issue was discovered in Squid 3.3.9 through 3.5.28 and 4.x through  ...)
 	{DSA-4507-1 DLA-1858-1}
 	- squid 4.8-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b9a1443a5075c0a474f53478fdf78de773884968

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b9a1443a5075c0a474f53478fdf78de773884968
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191109/644c339f/attachment.html>
