Jump to content
Sign in to follow this  

Advisories MDVSA-2010:187: squid

Recommended Posts

A vulnerability has been found and corrected in squid:


The string-comparison functions in String.cci in Squid 3.x before

3.1.8 and 3.2.x before allow remote attackers to cause a

denial of service (NULL pointer dereference and daemon crash) via a

crafted request (CVE-2010-3072).


Packages for 2008.0 and 2009.0 are provided as of the Extended

Maintenance Program. Please visit this link to learn more:



The updated packages have been patched to correct this issue.

Share this post

Link to post
Share on other sites
This topic is now closed to further replies.
Sign in to follow this  

  • Create New...