Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Thu, 11 Jul 2013 16:53:12 +0200
From: Raphael Geissert <>
Subject: CVE request: SQUID-2013:2: buffer overflow in HTTP request handling


Squid has released a security advisory[0]:
> Due to incorrect data validation Squid is vulnerable to a buffer
> overflow attack when processing specially crafted HTTP requests.


Could a CVE id be assigned please?

Thanks in advance.

[CC'ing squid's security address so that they can include the id in
the advisory once assigned]

Raphael Geissert - Debian Developer -

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.