[Git][security-tracker-team/security-tracker][master] Add CVE-2019-18677/squid
Salvatore Bonaccorso
carnil at debian.org
Sat Nov 9 07:09:32 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
cc5f49b0 by Salvatore Bonaccorso at 2019-11-09T07:07:56Z
Add CVE-2019-18677/squid
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2520,8 +2520,13 @@ CVE-2019-18679
RESERVED
CVE-2019-18678
RESERVED
-CVE-2019-18677
+CVE-2019-18677 [Cross-Site Request Forgery issue in HTTP Request processing]
RESERVED
+ - squid <unfixed>
+ - squid3 <removed>
+ NOTE: Squid 4: http://www.squid-cache.org/Versions/v4/changesets/squid-4-36492033ea4097821a4f7ff3ddcb971fbd1e8ba0.patch
+ NOTE: Squid 3.5: http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-e5f1813a674848dde570f7920873e1071f96e0b4.patch
+ NOTE: http://www.squid-cache.org/Advisories/SQUID-2019_9.txt
CVE-2019-18676 [Multiple issues in URI processing]
RESERVED
- squid <unfixed>
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/cc5f49b080c9bb051d70d953e12c1d72284e1059
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/cc5f49b080c9bb051d70d953e12c1d72284e1059
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191109/315e852e/attachment.html>
More information about the debian-security-tracker-commits
mailing list