Univention Bugzilla – Bug 52116
(ES 4.3) libproxy
Last modified: 2020-11-30 12:21:23 CET
Provide libproxy version 0.4.14-2+deb9u1 for UCS 4.3 First imported at bug #52002 This update addresses the following issue: * url::recvline in url.cpp in libproxy 0.4.x through 0.4.15 allows a remote HTTP server to trigger uncontrolled recursion via a response composed of an infinite stream that lacks a newline character. This leads to stack exhaustion. (CVE-2020-25219)
libproxy1v5: Installiert: 0.4.14-2+deb9u1 Installationskandidat: 0.4.14-2+deb9u1 Versionstabelle: *** 0.4.14-2+deb9u1 500 500 http://192.168.0.10/build2 ucs_4.3-0-extsec4.3/amd64/ Packages
CLOSED: Released as extsec4.3 update