FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-19 20:48:44 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
150d1538-23fa-11e5-a4a5-002590263bf5	squid -- Improper Protection of Alternate Path with CONNECT requests Squid security advisory 2015:2 reports: Squid configured with cache_peer and operating on explicit proxy traffic does not correctly handle CONNECT method peer responses. The bug is important because it allows remote clients to bypass security in an explicit gateway proxy. However, the bug is exploitable only if you have configured cache_peer to receive CONNECT requests. Discovery 2015-07-06 Entry 2015-07-06 Modified 2015-07-17 squid < 3.5.6 http://www.squid-cache.org/Advisories/SQUID-2015_2.txt CVE-2015-5400

VuXML ID

Description

150d1538-23fa-11e5-a4a5-002590263bf5

squid -- Improper Protection of Alternate Path with CONNECT requests

Squid security advisory 2015:2 reports:

Squid configured with cache_peer and operating on explicit proxy traffic does not correctly handle CONNECT method peer responses.

The bug is important because it allows remote clients to bypass security in an explicit gateway proxy.

However, the bug is exploitable only if you have configured cache_peer to receive CONNECT requests.

Discovery 2015-07-06
Entry 2015-07-06
Modified 2015-07-17
squid

< 3.5.6

http://www.squid-cache.org/Advisories/SQUID-2015_2.txt
CVE-2015-5400