squid: CVE-2016-3947 (a1b71fe1) · Commits · poplar / meta-openembedded

Commit a1b71fe1 authored May 06, 2016 by

Catalin Enache Committed by Armin Kuster May 09, 2016

squid: CVE-2016-3947

Heap-based buffer overflow in the Icmp6::Recv function in
icmp/Icmp6.cc in the pinger in Squid before 3.5.16 and 4.x
before 4.0.8 allows remote servers to cause a denial of
service (performance degradation or transition failures)
or write sensitive information to log files via an ICMPv6
packet.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-3947



Signed-off-by: Catalin Enache <catalin.enache@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
Signed-off-by: Otavio Salvador <otavio@ossystems.com.br>
Signed-off-by: Armin Kuster <akuster808@gmail.com>

parent d8246825

Hide whitespace changes

Inline Side-by-side

Please register or to comment

Admin message

squid: CVE-2016-3947