Updated squid packages fix security vulnerability
Publication date: 21 Jul 2013Type: security
Affected Mageia releases : 2
CVE: CVE-2013-4115
Description
Due to incorrect data validation Squid is vulnerable to a buffer overflow attack when processing specially crafted HTTP requests. This problem allows any trusted client or client script who can generate HTTP requests to trigger a buffer overflow in Squid, resulting in a termination of the Squid service (CVE-2013-4115).
References
SRPMS
2/core
- squid-3.1.19-4.4.mga2