diff options
| author | Sergey Matveychuk <sem@FreeBSD.org> | 2004-12-08 23:16:53 +0000 |
|---|---|---|
| committer | Sergey Matveychuk <sem@FreeBSD.org> | 2004-12-08 23:16:53 +0000 |
| commit | 4c0635e2e4d093f4c03dab781874ba2f4264a07c (patch) | |
| tree | 2c9832aafc228463043b81e2149f9b4cf40d398d /security/vuxml/vuln.xml | |
| parent | 2a27888eaf2a26a4f4997f43a5269d577c692f0f (diff) | |
| download | ports-4c0635e2e4d093f4c03dab781874ba2f4264a07c.tar.gz ports-4c0635e2e4d093f4c03dab781874ba2f4264a07c.zip | |
Notes
Diffstat (limited to 'security/vuxml/vuln.xml')
| -rw-r--r-- | security/vuxml/vuln.xml | 27 |
1 files changed, 27 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index 157856cf3732..471a79268a2a 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -32,6 +32,33 @@ EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> + <vuln vid="f0db930b-496b-11d9-bf86-0050569f0001"> + <topic>squid -- possible information disclosure</topic> + <affects> + <package> + <name>squid</name> + <range><lt>2.5.7_4</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>The squid-2.5 patches pages notes:</p> + <blockquote cite="http://www.squid-cache.org/Versions/v2/2.5/bugs/#squid-2.5.STABLE7-dothost"> + <p>In certain conditions Squid returns random data as error messages + in response to malformed host name, possibly leaking random + internal information which may come from other requests.</p> + </blockquote> + </body> + </description> + <references> + <url>http://www.squid-cache.org/Versions/v2/2.5/bugs/#squid-2.5.STABLE7-dothost</url> + </references> + <dates> + <discovery>2004-11-23</discovery> + <entry>2004-12-09</entry> + </dates> + </vuln> + <vuln vid="323784cf-48a6-11d9-a9e7-0001020eed82"> <topic>viewcvs -- information leakage</topic> <affects> |