[ubuntu/focal-security] privoxy 3.0.28-2ubuntu0.2 (Accepted)
Amir Naseredini
amir.naseredini at canonical.com
Wed Jan 25 13:23:10 UTC 2023
privoxy (3.0.28-2ubuntu0.2) focal-security; urgency=medium
* SECURITY UPDATE: Denial of Service
- debian/patches/CVE-2021-44540.patch: fixed the get_url_spec_param()
by freeing memory of compiled pattern spec before bailing.
- CVE-2021-44540
* SECURITY UPDATE: XSS
- debian/patches/CVE-2021-44543.patch: fixed the cgi_error_no_template()
by encoding the template name.
- CVE-2021-44543
Date: 2023-01-23 14:51:21.568429+00:00
Changed-By: Amir Naseredini <amir.naseredini at canonical.com>
https://launchpad.net/ubuntu/+source/privoxy/3.0.28-2ubuntu0.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the Focal-changes
mailing list