[squid-users] [squid-announce] [ADVISORY] SQUID-2015:2 Improper Protection of Alternate Path

Amos Jeffries squid3 at treenet.co.nz
Thu Aug 6 02:01:42 UTC 2015

This is a courtesy announcement for users and distributors of Squid-3.1
that the advisory SQUID-2015:2 also known as CVE-2015-5400 has been
updated to include a patch for Squid-3.1.

The latest advisory document can be downloaded from

The patch is available in the 3.1 series patch archive at

Thanks to Raphael Hertzog with sponsorship by Debian LTS sponsors for
this difficult work.

Amos Jeffries
Squid Software Foundation

squid-announce mailing list
squid-announce at lists.squid-cache.org

More information about the squid-users mailing list