Release date:
2026-04-28 13:48:46 UTC
Description:
- CVE-2019-12521: fix ESI parser off-by-one heap overflow by enforcing a
stack-depth limit and throwing on overflow
- CVE-2019-12524 already addressed by the CVE-2019-12520 backport (same
fix upstream; see Squid advisory SQUID-2019:4)
Updated packages:
-
squid-3.1.23-30.el6.tuxcare.els18.x86_64.rpm
sha:849202bf813509286d09547995e065e03016059a4cc24cc0e811a1ecdaa706b7
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
