Advisories ยป MGASA-2016-0148

Updated squid packages fix CVE-2016-4051

Publication date: 25 Apr 2016
Type: security
Affected Mageia releases : 5
CVE: CVE-2016-4051


Updated squid packages fix security vulnerability:

Due to incorrect buffer management Squid cachemgr.cgi tool is vulnerable to a
buffer overflow when processing remotely supplied inputs relayed to it from
Squid. This problem allows any client to seed the Squid manager reports with
data that will cause a buffer overflow when processed by the cachemgr.cgi tool