Package squid-helpers: Information

    Binary package: squid-helpers
    Version: 4.11-alt1
    Architecture: ppc64le
    Build time:  May 1, 2020, 10:30 PM in the task #250949
    Source package: squid
    Category: System/Servers
    Report package bug
    Gear: https://git.altlinux.org/gears/s/squid.git?a=tree;hb=a666f28e388…
    Build log: https://git.altlinux.org/tasks/250949/build/100/ppc64le/log
    Home page: http://www.squid-cache.org/
    License: GPLv2
    Summary: Squid helpers
    Description: 
    This package contains Squid helpers for different kinds of authentication.
    Maintainer: Alexey Shabalin
    List of contributors:
    Alexey Shabalin
    Ivan A. Melnikov
    Gleb Fotengauer-Malinovskiy
    Aleksei Nikiforov
    Andrey Cherepanov
    Mikhail Efremov
    Anton V. Boyarshinov
    Led
    Vitaly Kuznetsov
    Grigory Batalov
    Dmitry V. Levin
    Denis Ovsienko
    kt
    qa-robot
    Stanislav Ievlev

    Last changed

    May 1, 2020 Alexey Shabalin 4.11-alt1
    - 4.11
- build with systemd sd_notify support
    March 14, 2020 Alexey Shabalin 4.10-alt1
    - Updated to 4.10.
- Fixed:
  + CVE-2019-12526 Heap Overflow issue in URN processing.
  + CVE-2019-12523 Multiple issues in URI processing.
  + CVE-2019-18676 Multiple issues in URI processing.
  + CVE-2019-18677 Cross-Site Request Forgery issue in HTTP Request processing.
  + CVE-2019-18678 HTTP Request Splitting issue in HTTP message processing.
  + CVE-2019-18679 Information Disclosure issue in HTTP Digest Authentication.
  + CVE-2020-8449 Improper Input Validation issues in HTTP Request processing.
  + CVE-2020-8450 Improper Input Validation issues in HTTP Request processing.
  + CVE-2019-12528 Information Disclosure issue in FTP Gateway.
  + CVE-2020-8517 Buffer Overflow issue in ext_lm_group_acl helper.
    July 15, 2019 Alexey Shabalin 4.8-alt1
    - Updated to 4.8
- Fixes:
  + CVE-2019-12854 Denial of Service issue in cachemgr.cgi
  + CVE-2019-12529 Denial of Service in HTTP Basic Authentication
  + CVE-2019-12525 Denial of Service in HTTP Digest Authentication
  + CVE-2019-12527 Heap Overflow issue in HTTP Basic Authentication
  + CVE-2019-13345 Multiple Cross-Site Scripting issues in cachemgr.cgi
    VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
    Version: v24.5.1
    Back to top