[Git][security-tracker-team/security-tracker][master] Update information on CVE-2020-8517/squid

Salvatore Bonaccorso carnil at debian.org
Thu Feb 6 22:26:08 GMT 2020



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9a48b33c by Salvatore Bonaccorso at 2020-02-06T23:25:45+01:00
Update information on CVE-2020-8517/squid

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -532,11 +532,12 @@ CVE-2020-8519
 CVE-2020-8518
 	RESERVED
 CVE-2020-8517 (An issue was discovered in Squid before 4.10. Due to incorrect input v ...)
-	- squid <unfixed>
-	- squid3 <removed>
+	- squid <unfixed> (unimportant)
+	- squid3 <removed> (unimportant)
 	NOTE: http://www.squid-cache.org/Advisories/SQUID-2020_3.txt
 	NOTE: Squid 3.5: http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-c62d2b43ad4962ea44aa0c5edb4cc99cb83a413d.patch
 	NOTE: Squid 4: http://www.squid-cache.org/Versions/v4/changesets/squid-4-6982f1187a26557e582172965e266f544ea562a5.patch
+	NOTE: Debian binary packages are not build with --enable-external-acl-helpers="[...]LM_group[...".
 CVE-2020-8516 (The daemon in Tor through 0.4.1.8 and 0.4.2.x through 0.4.2.6 does not ...)
 	- tor <unfixed> (unimportant)
 	NOTE: Not considered a bug / explicit design choice by upstream



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9a48b33c84cd7afda4eae7db63bedb6c716a207c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9a48b33c84cd7afda4eae7db63bedb6c716a207c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200206/ae8c2f3d/attachment.html>


More information about the debian-security-tracker-commits mailing list