exploitDog

openSUSE-SU-2018:0394-1

Опубликовано: 08 фев. 2018

Источник: suse-cvrf

Описание

Security update for pound

This update for pound fixes one issue.

This security issue was fixed:

CVE-2016-10711: Prevent request smuggling via crafted headers (bsc#1078298).

Список пакетов

openSUSE Leap 42.3

pound-2.7-8.1

pound-doc-2.7-8.1

Ссылки

https://lists.opensuse.org/opensuse-updates/2018-02/msg00024.html
E-Mail link for openSUSE-SU-2018:0394-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

Apsis Pound before 2.8a allows request smuggling via crafted headers, a different vulnerability than CVE-2005-3751.

Затронутые продукты

openSUSE Leap 42.3:pound-2.7-8.1

openSUSE Leap 42.3:pound-doc-2.7-8.1

Ссылки

https://www.suse.com/security/cve/CVE-2016-10711.html
CVE-2016-10711
https://bugzilla.suse.com/1078298
SUSE Bug 1078298
https://bugzilla.suse.com/1173075
SUSE Bug 1173075