Date: Thu, 11 Jul 2013 16:53:12 +0200 From: Raphael Geissert <geissert@...ian.org> To: oss-security@...ts.openwall.com Cc: squid-bugs@...id-cache.org Subject: CVE request: SQUID-2013:2: buffer overflow in HTTP request handling Hi, Squid has released a security advisory: > Due to incorrect data validation Squid is vulnerable to a buffer > overflow attack when processing specially crafted HTTP requests. http://www.squid-cache.org/Advisories/SQUID-2013_2.txt Could a CVE id be assigned please? Thanks in advance. [CC'ing squid's security address so that they can include the id in the advisory once assigned] Cheers, -- Raphael Geissert - Debian Developer www.debian.org - get.debian.net
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.