drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Denial of Service in Polipo
Name: |
Denial of Service in Polipo |
|
ID: |
FEDORA-2012-0849 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 15 |
|
Datum: |
Do, 2. Februar 2012, 08:55 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3596 |
|
Applikationen: |
Polipo |
|
Originalnachricht |
Name : polipo Product : Fedora 15 Version : 1.0.4.1 Release : 6.fc15 URL : http://www.pps.jussieu.fr/~jch/software/polipo/ Summary : Lightweight caching web proxy Description : Polipo is a lightweight caching web proxy that was designed as a personal cache. It is able to cache incomplete objects and will complete them using range requests. It will use HTTP/1.1 pipelining if supported by the remote server.
------------------------------------------------------------------------------- - Update Information:
- add daily cache cleanup
- fix missing creation of /var/run directory (bz #755198)
- make sure log directory context is set correctly (bz #741779)
- fix denial of service vulnerability CVE-2011-3596 (bz #742897) ------------------------------------------------------------------------------- - ChangeLog:
* Sun Jan 22 2012 Bernard Johnson <bjohnson@symetrix.com> - 1.0.4.1-6 - add daily cache cleanup - fix missing creation of /var/run directory (bz #755198) - make sure log directory context is set correctly (bz #741779) - fix denial of service vulnerability CVE-2011-3596 (bz #742897) * Sat Jan 14 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.0.4.1-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild * Mon Sep 26 2011 Bernard Johnson <bjohnson@symetrix.com> - 1.0.4.1-4 - take file / dir creation & testing out of initscript (bz #708814) - remove log file / dir creation in spec too - NetworkManager integration should use restart rather than reload (bz #699677) - add support for tmpfiles.d (bz #656669) - add support for systemd starting in F17 ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #755198 - polipo do not work after installation https://bugzilla.redhat.com/show_bug.cgi?id=755198 [ 2 ] Bug #741779 - polipo installs /var/log/polipo but does not own it https://bugzilla.redhat.com/show_bug.cgi?id=741779 [ 3 ] Bug #742897 - CVE-2011-3596 polipo: Assertion failure by processing certain HTTP POST / PUT requests [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=742897 ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update polipo' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce
|
|
|
|