|
Family: Debian Local Security Checks --> Category: infos
[DSA721] DSA-721-1 squid Vulnerability Scan
Vulnerability Scan Summary DSA-721-1 squid
Detailed Explanation for this Vulnerability Test
Michael Bhola discovered a bug in Squid, the popular WWW proxy cache.
Squid does not trigger a fatal error when it identifies missing or
invalid ACLs in the http_access configuration, which could lead to
less restrictive ACLs than intended by the administrator.
For the stable distribution (woody) this problem has been fixed in
version 2.4.6-2woody8.
For the unstable distribution (sid) this problem has been fixed in
version 2.5.9-7.
We recommend that you upgrade your squid packages.
Solution : http://www.debian.org/security/2005/dsa-721
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|