← Back to team overview

enterprise-support team mailing list archive

[Bug 2055179] Re: Please merge squid 6.6 from Debian unstable

 

This bug was fixed in the package squid - 6.6-1ubuntu4

---------------
squid (6.6-1ubuntu4) noble; urgency=medium

  * SECURITY UPDATE: DoS via chunked decoder uncontrolled recursion bug
    - debian/patches/CVE-2024-25111.patch: fix infinite recursion in
      src/http.cc, src/http.h.
    - CVE-2024-25111

 -- Marc Deslauriers <marc.deslauriers@xxxxxxxxxx>  Thu, 14 Mar 2024
10:36:04 -0400

** Changed in: squid (Ubuntu)
       Status: Fix Committed => Fix Released

** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2024-25111

-- 
You received this bug notification because you are a member of Ubuntu
Server/Client Support Team, which is subscribed to squid in Ubuntu.
Matching subscriptions: Ubuntu Server/Client Support Team
https://bugs.launchpad.net/bugs/2055179

Title:
  Please merge squid 6.6 from Debian unstable

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/squid/+bug/2055179/+subscriptions



References