[squid-announce] [ADVISORY] SQUID-2015:2 Improper Protection of Alternate Path
Amos Jeffries
squid3 at treenet.co.nz
Thu Aug 6 02:01:42 UTC 2015
This is a courtesy announcement for users and distributors of Squid-3.1
that the advisory SQUID-2015:2 also known as CVE-2015-5400 has been
updated to include a patch for Squid-3.1.
The latest advisory document can be downloaded from
<http://www.squid-cache.org/Advisories/SQUID-2015_2.txt>
The patch is available in the 3.1 series patch archive at
<http://www.squid-cache.org/Versions/v3/3.1/changesets/squid-3.1-10494.patch>
Thanks to Raphael Hertzog with sponsorship by Debian LTS sponsors for
this difficult work.
Amos Jeffries
Squid Software Foundation
More information about the squid-announce
mailing list