|
Family: Debian Local Security Checks --> Category: infos
[DSA828] DSA-828-1 squid Vulnerability Scan
Vulnerability Scan Summary DSA-828-1 squid
Detailed Explanation for this Vulnerability Test
Upstream developers of squid, the popular WWW proxy cache, have
discovered that changes in the authentication scheme are not handled
properly when given certain request sequences while NTLM
authentication is in place, which may cause the daemon to restart.
The old stable distribution (woody) is not affected by this problem.
For the stable distribution (sarge) this problem has been fixed in
version 2.5.9-10sarge2.
For the unstable distribution (sid) this problem has been fixed in
version 2.5.10-6.
We recommend that you upgrade your squid packages.
Solution : http://www.debian.org/security/2005/dsa-828
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|